core-dumps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly instructs setting DEBUGINFOD_URLS to public debuginfod servers (see SKILL.md and references/cheatsheet.md listing https://debuginfod.ubuntu.com, https://debuginfod.elfutils.org, etc.), which causes GDB to fetch and interpret third‑party debug symbols/sources from the open web that can materially influence analysis and subsequent actions.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill includes explicit sudo commands and persistent edits to root-owned system configuration files (e.g., /etc/security/limits.conf, /etc/sysctl.d/99-core.conf, sudo sysctl -w), which instruct the agent to change the machine's state and require elevated privileges.