Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill advertises capabilities that imply reading environment variables, accessing local files, and invoking shell-dependent tooling like ffmpeg, but it does not declare corresponding permissions or trust boundaries. This creates a transparency and governance gap: users or platforms may authorize the skill without understanding that it can access credential paths, process arbitrary local media files, and execute external binaries.
