task-trigger

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill instructs the agent to create and modify OS scheduler entries (crontab/launchd), write persistent task and plist/json files under $HOME, and register headless commands that will run later—actions that modify the machine's state and enable persistent, potentially arbitrary execution (and even suggest sudo when permissions fail).