Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill advertises and instructs use of capabilities including shell execution, filesystem access, environment-variable access, network calls, and config writes, but does not declare permissions. In an agent environment, this creates a transparency and governance gap: the skill can access secrets, write persistent config, and make outbound posts without an explicit permission contract, increasing the chance of over-privileged or unintended execution.
