Intent-Code Divergence
Medium
- Confidence
- 98% confidence
- Finding
- The skill repeatedly states that it never requests or handles credentials, but the blocker table says to 'provide login credentials' for email verification. That contradiction creates a clear path for an agent to solicit, relay, or expose account credentials in chat, which is dangerous because conversational logs are not an appropriate secret-handling channel and users may trust the skill's earlier assurances.
