user-permissions
Warn
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- Privilege Escalation (MEDIUM): The skill provides examples for configuring sudoers in SKILL.md, including snippets that grant full passwordless root access ('NOPASSWD: ALL'). While central to user management, this capability represents a significant security risk.
- Command Execution (LOW): Contains instructions for setting SUID and SGID permissions ('chmod u+s', 'chmod g+s') which allow binaries to run with the privileges of the file owner or group.
- Data Exposure (LOW): Guides the user to access sensitive system files such as '/etc/passwd' and '/etc/group' to view account and group listings.
Audit Metadata