skills/aradotso/ai-agent-skills/pixel-agents-vscode/Snyk

pixel-agents-vscode

Warn

Audited by Snyk on May 17, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill includes an explicit "Launch with --dangerously-skip-permissions" option that instructs agents to bypass tool-approval security mechanisms (and provides file-write/asset-directory operations), so it encourages disabling safeguards even though it doesn't directly ask for sudo, user creation, or system-service edits.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 17, 2026, 01:42 AM

Issues

1

Security Audit — snyk — pixel-agents-vscode