Vague Triggers
Medium
- Confidence
- 94% confidence
- Finding
- The manifest includes very broad trigger phrases such as “做PPT”, “生成PPT”, and “按照模板做”, which can match many ordinary user requests and cause the skill to activate in contexts broader than intended. Because the skill can read reference files and generate/write output files automatically, overbroad activation increases the chance of unintended invocation and unauthorized file-creation actions in response to generic requests.
