auto-skill

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly directs the agent to locate and automatically append content to global user configuration files (e.g., ~/.gemini/, ~/.cursor/, etc.) and to create/write knowledge/experience files in the environment—modifying persistent host files without requiring sudo and without explicit user consent—therefore it alters the machine's state and can persist changes.