Context-Inappropriate Capability
Medium
- Confidence
- 93% confidence
- Finding
- These instructions direct the agent to execute local shell and PowerShell commands that inspect running processes, rename files, run setup scripts, and potentially launch an application. Even if intended for legitimate onboarding, this creates a direct pathway for filesystem changes and script execution on the host, which is risky in a skill that users may invoke for ordinary application tasks rather than system administration.
