vm0-computer

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This skill intentionally sets up local HTTP and WebSocket proxies that tunnel filesystem and Chrome CDP access to an external domain using a bridge token — enabling remote access to, reading, writing, moving, and deleting files on the user's machine and forwarding an auth token to an external server, which is a high-risk backdoor/data-exfiltration pattern.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs the agent to write and run a local proxy process and to read, write, move, and delete arbitrary files on the user's machine via WebDAV, which directly modifies host state and can compromise the machine.