Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill describes reading and writing numerous local files and generating reports, yet the metadata shown in SKILL.md does not declare any explicit permissions. That mismatch can cause users or a hosting platform to underestimate the skill's actual access, weakening informed consent and sandbox enforcement.
