things-mac

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). The skill instructs using a CLI that can read and modify the local Things database and explicitly tells users to grant macOS "Full Disk Access" (a privileged bypass of privacy protections), but it does not ask the agent to run sudo, create users, or edit system/sudo-protected files directly, so it is security-sensitive but not maximally dangerous.