Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 81% confidence
- Finding
- The skill documentation exposes executable steps that invoke local Python scripts and references configuration and order files, yet it does not declare permissions for file read/write behavior. This creates a transparency and consent problem: users and hosting platforms may not realize the skill persists data locally or accesses sensitive config material such as payment settings and cryptographic keys.
