Context-Inappropriate Capability
Medium
- Confidence
- 95% confidence
- Finding
- The skill explicitly instructs the agent to execute Bash for directory creation, migration, backups, and file appends. Even if intended for persistence, this expands the skill from advice into filesystem mutation, creating risk of unintended local data changes, privacy exposure, and destructive behavior if paths or environment variables are manipulated.
