Scope Creep
Medium
- Confidence
- 93% confidence
- Finding
- The manifest declares no filesystem read/write permissions, yet the documented postinstall hook links a private configuration directory from a local path into the workspace. This is a security-relevant filesystem operation and can expose sensitive local files or configuration into a broader workspace context while bypassing permission transparency expected by users and tooling.
