Context-Inappropriate Capability
Medium
- Confidence
- 86% confidence
- Finding
- Custom policy regexes are loaded from a user-controlled config file and passed directly into grep -E across repository files. This can enable regex-based denial of service, unexpected matching behavior, or workflow disruption in environments where untrusted or centrally managed config is present; the embedded Python also silently expands the tool's trust boundary into the user's home directory.
