Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill documentation advertises and instructs use of capabilities including environment variable access, file reads/writes, network access, and shell execution, yet no permissions are explicitly declared. This creates a transparency and consent problem: an agent or user may invoke the skill without understanding it can persist data locally, contact external services, and execute local commands.
