Vague Triggers
Medium
- Confidence
- 82% confidence
- Finding
- The description explicitly includes banking and IM apps without any built-in trigger limitations, escalation requirements, or safety boundaries. Because the skill operates a real iPhone, permissive activation around financial or communications apps can lead to unauthorized transfers, message sending, or exposure of sensitive account data if misrouted or misused.
