run-codex-1

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill explicitly instructs the agent/operator to bypass authentication and sandboxing (e.g. ORCHESTRATE_SKIP_CODEX_AUTH=1 and --dangerously-bypass-approvals-and-sandbox) and spawns detached runners that perform process kills, worktree removals, and other filesystem/git mutations, which constitute a high-risk security/state-bypass pattern.