log-aggregation

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The prompt instructs mounting and reading sensitive host paths (e.g., /var/run/docker.sock, /var/lib/docker/containers, /var/log/auth.log) and deploying system-level services, actions that require elevated privileges and can modify or expose the host state.