Description-Behavior Mismatch
Medium
- Confidence
- 89% confidence
- Finding
- The skill is presented as an npm registry exploration and health-check capability, but its documented execution model explicitly contemplates write operations and confirmation flows. This expands the effective privilege and attack surface beyond the advertised read-focused purpose, increasing the risk that a user or downstream agent invokes state-changing npm account actions they did not expect.
