Context-Inappropriate Capability
High
- Confidence
- 98% confidence
- Finding
- The sample resolver builds executable JavaScript from content-derived strings using new Function, which enables code execution if an attacker can influence content.json or any variable expressions. In this skill context, the documentation explicitly encourages data-driven rendering, so users are likely to adopt this pattern and treat content as configuration, making injection risk more realistic and dangerous.
