wta-using-wta

Warn

Audited by Snyk on Jun 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly instructs running commands that write local config and bootstrap/enforce SSH on a VPS (e.g., wta vps bootstrap --apply, wta vps enforce-ssh --apply, registering pubkeys), which mutate system and SSH configuration and likely require elevated privileges, so it pushes the agent to change machine state.

Issues (1)

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 18, 2026, 03:17 PM
Issues
1
Security Audit — snyk — wta-using-wta