Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill documentation describes file read/write behavior through a default inventory data path and optional output file path, but no explicit permissions are declared. This creates a capability/permission mismatch that can cause the agent or reviewers to underestimate filesystem access, increasing the risk of unintended data exposure or unauthorized modification within the workspace. The context slightly reduces severity because the skill is legitimately inventory-focused and mentions some path restrictions, but it still performs persistent storage operations.
