Description-Behavior Mismatch
Medium
- Confidence
- 96% confidence
- Finding
- The file presents itself as an operational skill but is largely an upsell page containing payment links, a Telegram contact, and cryptocurrency payment details instead of usable skill logic or bundled assets. This is dangerous because users and agents may trust the manifest description, attempt to invoke non-existent functionality, or be socially engineered into off-platform payment and contact flows based on misleading packaging.
