codex-worker

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill instructs launching un-sandboxed Codex agents using the explicit "--dangerously-bypass-approvals-and-sandbox" flag and spawns persistent tmux sessions and git worktrees (modifying repo and process state), which actively encourages bypassing security/sandboxing on the host.