Intent-Code Divergence
Medium
- Confidence
- 84% confidence
- Finding
- The skill mislabels read-only retrieval actions like `get_charge` and `get_order` as `[write]`, which creates inaccurate operator guidance about what actions are state-changing. While this does not directly enable code execution or data modification, incorrect safety metadata can cause users or downstream agents to make poor approval decisions and undermines trust in the skill's control model.
