Vague Triggers
Medium
- Confidence
- 90% confidence
- Finding
- The activation text is very broad and can trigger on many ordinary browsing or web-interaction requests, which increases the chance the agent invokes a powerful browser-automation skill when a safer, narrower capability would suffice. Because this skill can navigate sites, scrape content, and fill forms on external services, overbroad activation expands the attack surface for unintended actions, data submission, or account-affecting behavior.
