dynamic-workflows

Warn

Audited by Snyk on Jul 3, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 0.70). Yes — the prompt explicitly enables workflows whose sub-agents run with acceptEdits and auto-approve file edits (and instructs saving scripts into ~/.claude/workflows or project dirs), which directly permits the agent to modify the machine's filesystem and thus can change system state even if it doesn't request sudo or create users.

Issues (1)

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 3, 2026, 07:16 AM
Issues
1
Security Audit — snyk — dynamic-workflows