Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises no explicit permissions, yet the content clearly enables local file access, shell execution via python3, and output file creation. This creates a transparency and governance gap: operators may invoke a skill believing it is low-privilege when it can actually read from and write to the filesystem and execute local code.
