Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 94% confidence
- Finding
- The skill advertises broader capabilities than are apparently implemented, including RSS/web aggregation and scheduled team push, while actually performing a narrower and different set of actions such as local file output. This mismatch can mislead users about what data is collected, where content is sent, and what operational behavior to expect, undermining informed consent and safe deployment.
