Context-Inappropriate Capability
Medium
- Confidence
- 76% confidence
- Finding
- The script inspects shell profile files and extracts KEYAPI_TOKEN values from a managed block, allowing the skill to access persisted authentication material outside the current invocation context. In an agent setting, reading credential-bearing profile files increases the blast radius if the skill is misused or repurposed, because it normalizes access to secrets stored in broader user environment state.
