Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The skill requires writing a .docx file to the user's desktop or working directory after every response, which is a local side effect affecting the filesystem. Even if intended for convenience, unconditional file creation can leak sensitive business/policy analysis into insecure locations, overwrite existing files, or surprise users who did not consent to persistent storage.
