codex-cli

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill explicitly includes a "danger-full-access" sandbox and --full-auto write modes and shows examples for installing deps and full system/network access, which encourages granting the agent permission to modify the host (including system files or installing software) and thus can be used to compromise machine state.