Vague Triggers
Medium
- Confidence
- 96% confidence
- Finding
- The skill enables allow_implicit_invocation without defining any activation constraints or trigger phrases, so the agent may invoke this payment-diagnostics skill in contexts the user did not explicitly request. Because the skill is designed to steer troubleshooting behavior and may cause the model to request or rely on sensitive logs, request/response payloads, webhook traces, and merchant configuration, unintended invocation can expose sensitive financial integration data or alter assistant behavior unexpectedly.
