skill-benchmark

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The prompt explicitly instructs unsetting protective environment variables and using --dangerously-skip-permissions to spawn nested headless sessions with Read/Write/Edit/Bash tool access, which bypasses safety prompts and enables arbitrary filesystem and command execution that can compromise the host.