Description-Behavior Mismatch
Medium
- Confidence
- 94% confidence
- Finding
- The file implements a person-centric legal-representative investment and position inquiry workflow, which goes beyond the manifest's stated enterprise-introduction purpose. This scope mismatch is dangerous because it enables collection and presentation of an individual's cross-company affiliations and role history under a broader enterprise-report skill, increasing privacy, compliance, and misuse risk without clear user expectation or justification.
