Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill invokes local scripts, reads user-provided files/images, accesses the network, and uses shell commands, yet it declares no permissions or trust boundaries. This creates a real security issue because reviewers and runtime policy engines cannot accurately assess or constrain what the skill is allowed to do, increasing the risk of overbroad file access, unexpected command execution, or network exfiltration if the implementation is later expanded or misused.
