skills/vibeeval/vibecosystem/cli-reference/Snyk

cli-reference

Warn

Audited by Snyk on Mar 23, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.70). The prompt explicitly recommends and normalizes the --dangerously-skip-permissions flag (including stating "Headless requires this") and shows allowing Bash/tools and plugin loading, which directs the agent to bypass permission prompts and enables unchecked execution that can compromise the host.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 23, 2026, 09:03 AM

Issues

1

Security Audit — snyk — cli-reference