Context-Inappropriate Capability
Medium
- Confidence
- 93% confidence
- Finding
- runAmazonScan returns process.env.INTEL_DB_PATH to the caller even though the function's stated purpose is product scanning and alert generation. Exposing internal filesystem paths leaks unnecessary deployment details that can aid follow-on attacks, debugging abuse, or targeted file access attempts if this result is surfaced through an API or UI.
