Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 80% confidence
- Finding
- The skill advertises operational behaviors that imply shell and network-capable actions, including running a security audit script and using CLI/browser/web search, yet it declares no permissions. This creates a trust and review gap: users may install it expecting a documentation-only skill while it encourages privileged execution paths that can touch the filesystem or external resources.
