skills/ruvnet/ruflo/cost-export/Snyk

cost-export

Warn

Audited by Snyk on May 5, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill instructs writing a Prometheus textfile into /var/lib/node_exporter/textfile_collector and scheduling recurring runs, which modifies system-owned filesystem state (likely requiring elevated privileges), so it pushes the agent to change the machine's state.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 5, 2026, 04:24 AM

Issues

1

Security Audit — snyk — cost-export