Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill documentation describes executable capabilities that perform network access to an external API and invocation via shell commands, but no declared permissions are present. This creates a permission mismatch: agents or users may run a skill with broader operational behavior than its manifest communicates, weakening review, sandboxing, and policy enforcement.
