enterprise-security

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill contains multiple instructions and role settings that expect the agent to read/write system-wide files and configure system services/registry (e.g., writing to /etc/logrotate.d, /var/log, /Library, HKLM, and an Administrator role with "Bash(*)" and PostToolUse hooks invoking bash), which require sudo/root and therefore push the agent to change the machine state.