ad-security-reviewer

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly includes producing PowerShell/GPO implementation scripts and remediation steps for modifying privileged groups, service accounts, and GPOs—actions that require administrative privileges and change system/domain state—so it pushes the agent toward modifying the machine/AD environment.