skills/vibeeval/vibecosystem/eval-harness/Snyk

eval-harness

Warn

Audited by Snyk on Mar 23, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (medium risk: 0.50). The prompt explicitly includes a capability eval "Can create new user account," which could be interpreted as instructing the agent to create system-level users (a state-changing, potentially privileged action), while most other examples are non-privileged eval/test operations.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 23, 2026, 09:04 AM

Issues

1

Security Audit — snyk — eval-harness