codex-exec

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs disabling the sandbox and using "--sandbox danger-full-access" and "--full-auto" for installing packages, running tests and system operations (and even says "dangerouslyDisableSandbox: true"), which encourages the agent to perform privileged, persistent modifications to the host system.