Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill advertises and invokes capabilities including environment-variable access, file read/write, network calls, and shell execution, but does not declare permissions or warn users accordingly. This creates a transparency and consent problem: users or orchestrators may run a skill with broader access than expected, increasing the chance of unintended data exposure, command execution, or filesystem modification.
