Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill invokes shell commands extensively but declares no explicit permissions, which weakens the platform's ability to gate or review execution risk. In this context, shell access is central to reading credentials, refreshing tokens, and making network calls, so undeclared capability use materially increases the chance of unintended or opaque privileged actions.
