Context-Inappropriate Capability
Medium
- Confidence
- 85% confidence
- Finding
- The skill introduces `exec command="python generate_report.py"` as part of a normal workflow even though its purpose is file delivery. That broadens the operational scope from messaging to arbitrary command execution, which could lead an agent to run untrusted or unnecessary local code before sending files, increasing the risk of harmful actions or unintended data exposure.
