Intent-Code Divergence
Low
- Confidence
- 96% confidence
- Finding
- The README exposes absolute local filesystem paths under /Users/timlin/... while presenting them as example links. This leaks developer environment details and can disclose usernames, workstation layout, and repository locations that aid social engineering or targeted follow-on attacks. In a skill repository, this is not directly exploitable on its own, but it is still an avoidable information disclosure.
