skills/zai-org/glm-v/glmv-prd-to-app/Snyk

glmv-prd-to-app

Warn

Audited by Snyk on May 11, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly requires a self-contained start.sh that installs system-wide dependencies (Node, Python, PostgreSQL), sets up/reset databases, and otherwise modifies system state (implying use of sudo/system package installs), so it pushes the agent to change the host machine.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 11, 2026, 04:12 AM

Issues

1

Security Audit — snyk — glmv-prd-to-app