Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill documentation describes capabilities to read and write files, invoke shell tools like ffmpeg/python/bash, and send media content to external LLM endpoints, but it does not declare any explicit permissions or capability boundaries. This creates a real security gap because operators and policy engines cannot accurately assess or constrain what the skill can access, especially given that it may process sensitive video, audio, transcripts, and metadata and transmit them off-host.
