Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill documentation exposes file-write capability and instructs users to run a local script that writes generated XML and checksum artifacts, yet it declares no permissions model. In an agent setting, undeclared write behavior weakens reviewability and may cause sensitive regulatory content to be persisted to disk without explicit user awareness or policy gating.
