tool-design

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). The skill explicitly advocates giving agents direct file-system/command-execution access (the "File System Agent Pattern") so agents can "operate on your system," which enables modifying machine state even though it doesn't explicitly instruct obtaining sudo, editing privileged system files, or creating users—hence a moderate-to-high risk.