Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill instructs the agent to run a local Python script and write outputs, which implies file read/write behavior, but no permissions are declared. This creates a trust and policy gap: an agent may access local files or write artifacts without explicit user-visible authorization boundaries.
