Description-Behavior Mismatch
Medium
- Confidence
- 92% confidence
- Finding
- The manifest says the skill should be used for 'searching and reading data,' but the body explicitly contemplates state-changing '[write]' and '[destructive]' actions. That mismatch can cause an orchestrating agent or user to treat the skill as read-only and invoke it in situations where mutation should have required stronger confirmation or a different trust boundary.
