Description-Behavior Mismatch
Medium
- Confidence
- 94% confidence
- Finding
- The skill is presented as a code-review tool, but it instructs the agent to move beyond review into remediation and repository modification when CI fails on the author's PR. That scope expansion is dangerous because a user invoking 'review' may unintentionally authorize code changes and pushes, enabling unintended write actions in a workflow that should be read-mostly.
