Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill describes file-reading and file-writing behavior via local scripts and output paths, but does not declare any corresponding permissions or constraints. This creates a trust and containment gap: an agent or reviewer may assume the skill is passive documentation while it actually enables filesystem access, increasing the chance of unintended reads/writes or path misuse when the referenced scripts are executed.
