Context-Inappropriate Capability
Medium
- Confidence
- 89% confidence
- Finding
- The documentation instructs the agent to copy and execute a Python script from the skill bundle and verify a local runtime, expanding behavior from passive content generation into code execution. Executing bundled scripts increases the attack surface because a reviewer may approve a writing skill while overlooking that it also runs local code with workspace access.
