crabbox

Warn

Audited by Snyk on Jul 3, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs modifying system-wide files using sudo (e.g., "sudo ln -sf "$PWD/..." /usr/local/bin/...") and running uploaded scripts on remote boxes, which directs the agent to change the machine's state requiring elevated privileges.

Issues (1)

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 3, 2026, 12:13 AM
Issues
1
Security Audit — snyk — crabbox