Description-Behavior Mismatch
Medium
- Confidence
- 84% confidence
- Finding
- The skill's stated purpose is to drive the MemCoT CLI for retrieval, but these instructions expand behavior into modifying configuration and local path settings. That broadens the skill's authority and can lead the agent to change local environment state or point services at unintended endpoints without clear user consent.
