Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 91% confidence
- Finding
- The skill metadata and documentation claim the skill browses curated pentesting resources and exploit databases, but the static analysis indicates materially different behavior including local storage, logging, export/search over stored data, and no actual browsing. That mismatch is dangerous because users may invoke the skill with sensitive security-research inputs under false assumptions about what it does, leading to unintended local persistence and exposure of data.
