Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 83% confidence
- Finding
- The skill advertises operational capabilities that imply network access and shell command execution, but it does not declare permissions or constraints for those behaviors. This weakens transparency and policy enforcement, making it easier for an agent to invoke network or shell actions unexpectedly during a security audit workflow.
