Context-Inappropriate Capability
High
- Confidence
- 97% confidence
- Finding
- The skill explicitly exposes a generic `shell` tool on the phone, which is far broader than GUI automation and enables arbitrary command execution on the connected Android device. In this context, an agent could read sensitive files, alter system settings, install persistence, or chain ADB-accessible actions well beyond what a user likely expects from screen automation.
