Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill advertises file-writing behavior via creation/export flows (`case.py --create`, `--export`) but does not declare any permissions. That mismatch can bypass user and platform expectations about what the skill is allowed to do, especially because exporting Markdown/PDF/HTML inherently writes output files to disk. In this context the risk is moderate rather than extreme because the documented writes appear aligned with the skill’s purpose, but undeclared write capability still reduces transparency and weakens permission controls.
