writing-plans

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The prompt explicitly requires producing exact file paths and exact commands including create/modify/delete actions, and even offers autonomous execution (sessions_spawn) and cron scheduling, which enables the agent to perform state-changing operations on the host machine.