hooks-management

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs the agent to create and modify user-level configuration and executable hook scripts (e.g., in ~/.claude/hooks, ~/.claude/settings.json), run arbitrary shell commands via hooks (including logging, blocking, or running formatters/osascript/npx), and persist behavior across restarts—enabling arbitrary code execution, logging of sensitive data, and persistence on the host even though it does not request sudo.