Description-Behavior Mismatch
High
- Confidence
- 96% confidence
- Finding
- The skill metadata says this CLI is for querying/viewing photo information, but the code registers a destructive `delete` subcommand. This mismatch is dangerous because an agent or user may invoke the skill under the assumption it is read-only, enabling unexpected deletion of photos and violating least surprise and least privilege.
