auditing-uefi-firmware-with-chipsec
Warn
Audited by Snyk on Jun 23, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs installing/loading a kernel driver with sudo and running CHIPSEC commands that read/write low-level hardware (SPI flash, UEFI variables) — including an explicit "modify" test — which directly modify/affect the machine firmware/state and therefore can compromise the host.
Issues (1)
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata