axiom-code-signing-ref

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). The prompt instructs the agent to import private certificates into the user Keychain and to run security set-key-partition-list to allow codesign access "without UI prompt," which programmatically alters keychain permissions and bypasses a security prompt—modifying the machine's security state.