Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill advertises local JSON storage, a writable database path, and tools such as add/update/delete, but declares no permissions. That mismatch can prevent users or the platform from understanding the skill's real file-write capability, increasing the chance of unintended modification of local data and weakening security review and consent.
