Description-Behavior Mismatch
Medium
- Confidence
- 95% confidence
- Finding
- The script packages user-specified local content and uploads it to a scanning endpoint, which means workspace skill contents are exfiltrated to another service for analysis. Even if this is the intended architecture, the skill description does not clearly disclose that scanning is remote, so users may unintentionally send proprietary code or secrets off-host.
