Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The skill instructs the agent to read, persist, and delete a user's GEO API key from local filesystem locations, creating unnecessary credential-handling behavior inside the skill. Even if intended for convenience, local secret storage expands exposure to accidental disclosure, reuse across contexts, and unauthorized access by other tools or users on the same system.
