boris

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly encourages bypassing permission prompts (e.g., using --dangerously-skip-permissions / --permission-mode=dontAsk), auto-approving or routing permission requests, and running setup scripts and arbitrary commands on the host—actions that weaken or circumvent security and can let an agent change machine state even if it doesn't mention sudo or user creation directly.