codex

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (low risk: 0.30). The skill defaults to read-only and asks for permission before high-impact flags, so it doesn't explicitly instruct sudo/system-level changes, but it exposes and normalizes dangerous options (--sandbox danger-full-access, --full-auto, --sandbox workspace-write and --skip-git-repo-check) and can perform local edits or updates, so there's a moderate risk of modifying the machine state if those options are used.