Context-Inappropriate Capability
Medium
- Confidence
- 92% confidence
- Finding
- The skill expands from transforming user-provided materials into independently searching for and compiling external sources when no source is supplied. This broadens data access and behavior without an explicit consent boundary in the manifest, creating a scope-creep risk where the agent may fetch untrusted or unexpected content and present it as courseware.
