Missing User Warnings
Medium
- Confidence
- 90% confidence
- Finding
- The skill documentation instructs users to copy an executable into /usr/local/bin using sudo, which modifies a system-wide executable path with elevated privileges. While this is a common installation pattern, omitting a warning about privilege use and system modification increases the risk that users run an untrusted or unreviewed script as root, potentially causing broader system compromise if the script is malicious or replaced.
