incident-runbook-templates

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The runbook contains many explicit, privileged operational commands (kubectl rollout/scale/apply, psql pg_terminate_backend/VACUUM FULL, DB rollbacks, creating NetworkPolicy, writing to .claude/context/memory files, etc.) that would modify production/host state if executed by an agent with credentials, so it encourages changing the machine/cluster state.