Skills
skills/staruhub/claudeskills/Geek-skills-security-audit/Snyk

Geek-skills-security-audit

Warn

Audited by Snyk on Mar 26, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (medium risk: 0.60). The skill explicitly instructs running system-level package installs and sudo commands (e.g., pip install --break-system-packages, npm -g, sudo ufw/iptables, find /) which require elevated privileges and can modify the machine state, so it pushes the agent toward changing the host environment.

Issues (1)

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 26, 2026, 03:10 AM
Issues
1