Context-Inappropriate Capability
Low
- Confidence
- 91% confidence
- Finding
- The skill requests `exec` permission even though the documented functionality is limited to displaying summary, features, and JSON metadata. Unnecessary execution permission expands the attack surface: if the referenced script is modified, replaced, or behaves unexpectedly, the agent could execute arbitrary commands under a permission set not justified by the user-facing purpose.
