frida

Fail

Audited by Snyk on Jun 21, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

  • Malicious code pattern detected (high risk: 1.00). This skill contains explicit, high-risk instrumentation instructions (memory scanning for secrets, SSL-pinning bypass, unsafe attach and remote frida-server binding) that enable credential theft, remote code execution, and unauthorized data exfiltration.

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs bypassing security (e.g., lowering kernel.yama.ptrace_scope, disabling SIP or using --unsafe-attach), running frida-server on targets, and rebinding/listening interfaces — actions that require elevated privileges or circumvent system protections and therefore push the agent to compromise the machine state.

Issues (2)

E006
CRITICAL

Malicious code pattern detected in skill scripts.

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 21, 2026, 11:08 AM
Issues
2
Security Audit — snyk — frida