crabbox
Warn
Audited by Snyk on Jul 3, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs modifying system-wide files using sudo (e.g., "sudo ln -sf "$PWD/..." /usr/local/bin/...") and running uploaded scripts on remote boxes, which directs the agent to change the machine's state requiring elevated privileges.
Issues (1)
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata