Description-Behavior Mismatch
Medium
- Confidence
- 88% confidence
- Finding
- The skill is presented as a discovery gateway, but the documented commands include registering, removing, and otherwise mutating a persistent CLI registry. This expands the skill from passive lookup into state-changing behavior, which can be abused to poison future tool resolution or create hidden persistence beyond what a user would expect from 'discovery'.
