zeroboot-vm-sandbox

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill calls the Zeroboot execution endpoint (https://api.zeroboot.dev/v1/exec) at runtime to execute arbitrary agent-supplied code in a remote sandbox, so it relies on a third-party service that performs remote code execution.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.40). The skill primarily describes using a remote sandbox API (safe) but its self‑hosting/troubleshooting instructions include privileged host changes (e.g., "sudo modprobe kvm", accessing /dev/kvm, building/deploying Firecracker) which instruct running commands that modify the machine's state.