Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill documents shell execution and environment modification but does not declare corresponding permissions. This undermines informed consent and platform policy enforcement, because users or orchestration layers may invoke shell-capable behavior without an explicit permission boundary. In this context, the shell capability is central to the skill, so the omission is a real security-relevant issue rather than a documentation nit.
