qwen-agent

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The prompt explicitly suggests adding a persistent permission rule (via an "update-config" skill or editing settings) to allow Bash(claude-9arm:*) and thus remove per-call permission prompts, which is a security-policy change that bypasses protection and modifies agent/machine state.