Context-Inappropriate Capability
Medium
- Confidence
- 87% confidence
- Finding
- The example explicitly documents downloading remote content and automatically writing it to a local directory, which expands the skill from browser interaction into local file materialization. That creates risk of unintended storage of malicious, sensitive, or policy-violating files, especially if users do not realize downloads happen automatically.
