Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill advertises capabilities consistent with reading and writing configuration files and invoking local executables, yet it declares no permissions. That mismatch undermines consent and policy enforcement, especially because the skill can launch and close desktop applications and persist user-supplied executable paths, which are sensitive local actions.
