Context-Inappropriate Capability
Medium
- Confidence
- 88% confidence
- Finding
- The script reads local workspace state, task data, configuration, and gateway status even though the stated skill purpose is content generation. This expands access to internal operational information and can expose sensitive metadata such as installed skills, active tasks, model configuration, and system status in generated output or logs without a clear need-to-know basis.
