Context-Inappropriate Capability
Medium
- Confidence
- 92% confidence
- Finding
- The skill instructs use of `cron add` to create a host-level scheduled task, which modifies system state and introduces persistence. Even though it is framed as a reminder feature, scheduling commands can be abused to run arbitrary code repeatedly, and the skill does not include guardrails such as explicit consent, least-privilege guidance, or removal instructions.
