skills/cathrynlavery/codex-skill/codex/Snyk

codex

Warn

Audited by Snyk on Apr 24, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs use of a CLI flag named --dangerously-bypass-approvals-and-sandbox and directs executing codex exec with full access to the project root, which requests bypassing sandbox/approval/security controls and grants unrestricted system access.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 24, 2026, 07:28 PM

Issues

1