yuque-group-smart-search

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill makes runtime calls to an external service ("yuque-mcp" via the yuque_get_doc tool) to fetch full document content that is injected into the agent's response context and therefore can directly control prompts — flagged dependency: yuque-mcp / yuque_get_doc (external Yuque document fetch).