Context-Inappropriate Capability
Medium
- Confidence
- 89% confidence
- Finding
- The module publicly exports bulk-read and destructive registry helpers (`getAllAgentStatuses`, `clearRegistry`, `getRegistrySize`) for a shared in-memory store that contains governance, KPI, and budget status for all agents. In a skill/integration context, exposing unrestricted state inspection and deletion expands the attack surface beyond the stated agent-status extension purpose, enabling unauthorized disclosure of operational metadata and integrity loss through state wiping.
