Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The skill exposes a generic `play` action that accepts an arbitrary `filePath` and passes it to OS-native media players, allowing callers to trigger playback of any locally accessible audio file rather than only TTS output generated by the skill. In a voice/TTS skill, this broadens capability beyond the stated purpose and can be abused to access or use local resources unexpectedly, especially if the host environment treats skills as lower-trust components.
