Description-Behavior Mismatch
Medium
- Confidence
- 96% confidence
- Finding
- The guide explicitly instructs the agent to decrypt card details and use them to complete third-party payment forms in a browser. Giving an automated agent access to full PAN/CVV and directing it to enter those credentials on arbitrary merchant sites materially increases the risk of payment credential misuse, interception via malicious checkout pages, and unauthorized purchases, even though the document warns not to persist the data.
