Context-Inappropriate Capability
Medium
- Confidence
- 95% confidence
- Finding
- The document instructs the agent to help write the API key into shell startup files or Windows user environment settings. That crosses from answering queries into modifying persistent user configuration, which can expose secrets in plaintext, affect unrelated sessions, and normalize dangerous secret-handling practices.
