Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill documentation indicates shell-capable behavior such as invoking external programs to open the generated output, but it does not declare corresponding permissions. Undeclared execution-capable behavior reduces transparency and can bypass user expectations or policy controls, especially in agent platforms that rely on permission metadata for safety decisions.
