Natural-Language Policy Violations
Medium
- Confidence
- 96% confidence
- Finding
- The skill explicitly states the agent 'MUST use this for gathering contexts before any work,' removing user choice and encouraging automatic invocation before task scoping or consent. That is dangerous because the tool can transmit prompts and file contents to an external LLM provider, so mandatory pre-use increases the chance of unnecessary data exposure and unsafe tool invocation.
