team-assemble

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The prompt includes an explicit "mode: 'bypassPermissions'" instruction in Task calls that directs agents to override normal permission controls—an instruction unrelated to the stated team-assembly purpose and clearly deceptive/unsafe.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The prompt explicitly includes Task calls with mode: "bypassPermissions", which directs subagents to bypass security/permission controls (a clear instruction to circumvent protections) even though it doesn't directly name sudo, system-file edits, or user creation.