Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill invokes a shell script (`bash scripts/check_nzbget.sh ...`) but does not declare any corresponding permissions or execution capability in its metadata. Undeclared shell access is risky because it hides the true trust boundary of the skill, and if the script later incorporates user-controlled input or environment manipulation, it could enable command execution or sensitive data exposure without clear review signals.
