Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill advertises prompt augmentation but also includes file read/write capability through its documented behavior of storing data in a local knowledge file. Undeclared persistence expands the skill's effective privileges and can lead to unauthorized retention or modification of user-supplied content without proper governance.
