Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill instructs users to manage model configurations and explicitly points to a local config file, which implies file read/write behavior. Because the skill declares no permissions despite requiring configuration modification, it creates a transparency and policy gap: users and the platform may not understand that local files will be altered. In a model-management skill, undeclared file access is more dangerous because it affects persistent runtime behavior and can silently redirect future model traffic.
