powershell-security

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill contains explicit commands that modify system-wide configuration and files (WDAC policy conversion to System32, Set-ExecutionPolicy -Scope LocalMachine, HKLM registry changes, Register-PSSessionConfiguration, Restart-Computer, etc.), which require elevated privileges and change the host state.