Intent-Code Divergence
Medium
- Confidence
- 96% confidence
- Finding
- The skill repeatedly recommends `--permission-mode bypassPermissions` while simultaneously claiming not to grant full permissions, which is contradictory and normalizes running an AI coding tool with guardrails disabled. In this skill's context—automating code changes, background execution, and parallel tasks—this substantially increases the chance of unauthorized file modification, secret exposure, or destructive actions without meaningful user approval.
