Context-Inappropriate Capability
Medium
- Confidence
- 90% confidence
- Finding
- The skill explicitly instructs the agent to research broadly across docs, GitHub issues, forums, web search, and even spawn research sub-agents before asking for help. In a skill whose purpose is proactive behavior, this materially expands autonomous external reconnaissance and can cause unsupervised interaction with untrusted content, increasing prompt-injection and data-exfiltration risk.
