Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill documentation directs use of shell commands, local file access, environment variables, and outbound network services, but no corresponding permissions are declared. This creates a transparency and policy gap: users and the host system cannot accurately assess or constrain what the skill is allowed to do, increasing the chance of unintended data access or exfiltration.
