Review flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Static reason
No blocking static signals were detected.
Trigger
User runs `navop skill install` or invokes the CLI/MCP bridge against Navop.
Impact
Installed instructions can enable agent access to Navop-exposed terminal, SSH, database, Redis, and SFTP tools, subject to Navop's own approvals.
Mechanism
Explicit agent-skill installation and loopback MCP capability proxying.
Rationale
Source inspection found no concrete malicious behavior or external exfiltration. Per policy, explicit agent-skill installation and the resulting agent capability bridge warrant a warning rather than a block.
Evidence
package.jsondist/navop.jsdist/chunk-C4JEDXPH.jsdist/chunk-EY3DFQ24.jsskills/navop/SKILL.md