Description-Behavior Mismatch
Medium
- Confidence
- 87% confidence
- Finding
- The documentation broadens the skill from Remotion-based video generation into a web-scraping and asset acquisition workflow. Scope expansion itself is not malicious, but it increases the attack surface and may cause the agent to access third-party resources or collect data outside what a user would reasonably infer from the skill name and description.
