Vague Triggers
Medium
- Confidence
- 89% confidence
- Finding
- The skill uses broad natural-language triggers such as 'when the user asks to add a todo' and 'when the user asks to see todos' without defining strict invocation boundaries. In an agent setting, this can cause unintended file reads or writes when ordinary conversation is misinterpreted as an operational command, especially because the skill has workspace write access and automatically creates/modifies files.
