Description-Behavior Mismatch
Medium
- Confidence
- 93% confidence
- Finding
- The manifest says 'No external LLM needed,' but the body of the skill explicitly assigns core page understanding and control decisions to Claude. This is a security-relevant misrepresentation because operators may approve or deploy the skill under incorrect assumptions about data flow, model dependency, and where scraped content is sent for reasoning.
