codex-session-patcher

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The skill is explicitly designed to bypass AI safety refusals by modifying session files and injecting persistent CTF/pentest prompts into platform profiles/workspaces and also supports sending session data to external LLM endpoints (via configured API keys), which together constitute deliberate abuse (safety-evasion) and create a persistent, exfiltration-capable backdoor-like behavior.