Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 96% confidence
- Finding
- The skill claims to be an MCP-native guidance layer, but it embeds direct local execution patterns for scraping, stealth fetching, proxy rotation, login automation, fingerprint impersonation, and optional Cloudflare/Turnstile solving. This mismatch is dangerous because it can bypass expected MCP governance, logging, and permission boundaries, while also enabling anti-bot evasion and scraping of protected resources under the guise of harmless guidance.
