skills/wgpsec/aboutsecurity/naabu-portscan/Snyk

naabu-portscan

Warn

Audited by Snyk on Apr 22, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill explicitly recommends running naabu with sudo for SYN scans (i.e., obtaining root privileges), which encourages the agent to escalate privileges on the host even though it doesn't direct file/system modifications or user creation.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 22, 2026, 10:09 AM

Issues

1