skills/ace-step/ace-step-skills/acestep-simplemv/Snyk

acestep-simplemv

Warn

Audited by Snyk on Apr 4, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs installing system packages (ffmpeg, fonts) using system package managers and explicitly shows sudo apt-get/dnf commands and auto-install behavior, which requires elevated privileges and modifies system state, so it poses a risk of compromising the host.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 4, 2026, 09:49 PM

Issues

1