Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill invokes a Python script that performs network access and writes artifacts to disk, but the skill metadata declares no permissions or equivalent capability constraints. This mismatch can cause operators or automated policy systems to treat the skill as less risky than it is, increasing the chance it runs with insufficient review and broader-than-expected access.
