Context-Inappropriate Capability
High
- Confidence
- 97% confidence
- Finding
- The skill explicitly instructs the agent to retry with sudo when it encounters permission issues, even though the stated purpose is assessment and reporting. This broad privilege-escalation behavior can turn a low-risk read/report workflow into one capable of modifying protected system state or exposing sensitive local resources if any command in the flow is overbroad or compromised.
