Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill instructs the agent to read user-supplied materials and write generated application files, but it does not declare corresponding permissions or execution boundaries. This creates a mismatch between advertised privileges and actual behavior, increasing the risk of unintended file access, unsafe writes, or reviewers underestimating the skill's operational reach.
