Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 87% confidence
- Finding
- A description-behavior mismatch is dangerous because users may grant trust based on the stated purpose while the actual implementation performs undisclosed actions such as using hardcoded Feishu credentials and broader scraping/search behavior. In this context, the skill is designed to collect external content and push it to a remote table, so hidden credentials or undisclosed outbound behavior materially increase the risk of unauthorized access, data exfiltration, and misuse of third-party services.
