Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises operational commands that read local files and explicitly instructs the model/operator to read `references/SECURITY.md`, yet it does not declare corresponding permissions. Undeclared file-read capability weakens user consent and transparency, making it easier for a skill to access local content without clear review of that access scope.
