Context-Inappropriate Capability
High
- Confidence
- 99% confidence
- Finding
- The skill embeds highly sensitive operational secrets in plaintext, including a root SSH password, gateway token, and a live model API key, which are not necessary to publish inside a reusable skill document. Anyone who can read the skill can gain privileged remote access and consume external AI services, making this far more dangerous than ordinary configuration guidance.
