Skill Description-Behavior Mismatch - ATR-2026-00061 (96d6666a-7555-52b2-9898-672b86a49a4c)
Detects MCP skills whose runtime behavior diverges from their declared description. A skill described as "read-only file browser" that issues write or delete operations, or a "weather lookup" tool that accesses filesystem or network resources beyond its stated scope. This is a supply-chain indicator: a compromised or trojaned skill may retain its benign description while performing malicious actions.