Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The skill explicitly teaches reverse-engineering authenticated site APIs, monkeypatching fetch, inspecting requests, and reading response bodies from a logged-in browser context. In this context, that materially expands the skill from browser automation into extraction of protected session-bound data and creates a direct path to exfiltrate sensitive account information through the agent's normal outputs.
