computer-use-agents

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). Although the prompt advocates sandboxing, it defines and enables powerful file- and shell-level tools (bash, text_editor) and even shows a Dockerfile that creates a user and runs apt-get/setcap, which allow creating accounts and modifying system files and therefore could compromise the machine if run outside a proper sandbox.