d3fend-restore

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs the agent to perform administrative, state-changing operations (reissue/unlock accounts, re-enable firewall rules, restore files/databases, reinstall or rebuild systems, apply patches) that require elevated privileges and modify the host, so it must be flagged.