Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill advertises orchestration, registry search, security scanning, composition, and CLI execution patterns that imply file I/O, network access, and possible shell-adjacent behavior, yet the manifest declares no permissions or operational constraints. This creates a capability-transparency gap: users or calling systems cannot accurately assess or sandbox what the skill may do, increasing the risk of over-privileged execution and unsafe composition.
