skills/bytelandtechnology/use-jujutsu/jj-init/Snyk

jj-init

Warn

Audited by Snyk on Apr 13, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.90). The prompt instructs the agent to modify repository state (init a colocated .jj/) and explicitly tells the agent to "retry with escalated permissions" if jj config set fails, which encourages privilege escalation and thus risks compromising the machine.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 13, 2026, 03:08 AM

Issues

1

Security Audit — snyk — jj-init