Context-Inappropriate Capability
Medium
- Confidence
- 91% confidence
- Finding
- The skill instructs the agent to execute shell commands directly with curl and python3, including passing a URL argument into a script. In an agent environment, command execution increases attack surface for command abuse, unsafe argument handling, environment leakage, and bypass of higher-level safety controls that would normally govern network access.
