k3s-backup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The recovery procedure contains a runtime command that pipes a remote script to the shell ("curl -sfL https://get.k3s.io | K3S_TOKEN=... sh -s
• ..."), so https://get.k3s.io is fetched at runtime and directly executes remote code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs creating and modifying privileged system files (under /etc and /usr/local/bin), adding a systemd service, editing /etc/crontab, and running commands with sudo/systemctl—actions that change the machine state and require elevated privileges.