Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 85% confidence
- Finding
- The skill advertises and facilitates running a bundled installer that writes multiple SKILL.md files into the user's local skills directory, yet the manifest declares no permissions. This is dangerous because it obscures the skill's true file-system impact and can cause users or enforcement systems to trust a package that performs local file writes and potential overwrites.
