claude-subagent-development

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). The skill documents and encourages powerful file and shell operations (Bash, Write, KillShell) and explicitly exposes a "bypassPermissions" mode that auto-approves actions, which enables bypassing permission checks and could let an agent modify the host state without consent, even though it does not explicitly request sudo or creation of system users.