setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The setup script runs runtime commands that fetch and execute remote install scripts (curl -fsSL https://deb.nodesource.com/setup_22.x | sudo -E bash and curl -fsSL https://get.docker.com | sh), which directly execute remote code as required installation steps.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill explicitly instructs the agent to perform privileged system modifications (sudo installs, usermod/add to groups, setfacl, write systemd/WSL configs, start/stop services, etc.) and to change system/service files and git remotes — all actions that alter machine state and require elevated privileges.