Description-Behavior Mismatch
Medium
- Confidence
- 90% confidence
- Finding
- The README materially broadens the advertised capability from a memory skill to also enabling 14 remote `skill_*` marketplace/management tools, including install, publish, update, and unpublish operations. In a security-sensitive agent context, documenting how to expose unrelated higher-privilege tool surfaces increases attack surface and can lead users to grant capabilities beyond what the skill needs, raising the risk of supply-chain abuse or unintended remote actions.
