Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 96% confidence
- Finding
- The skill performs file reads/writes, shell execution, and environment-dependent operations, but does not declare permissions to match those capabilities. This creates a transparency and policy-enforcement gap: a host or reviewer may treat the skill as lower risk than it actually is, increasing the chance that destructive actions like restoring files or running helper scripts are approved implicitly.
