Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill instructs the agent to execute local shell commands and use a fixer that reads and modifies configuration files, but the skill metadata shown here declares no permissions. That mismatch is a real security issue because it hides the skill's effective capabilities from policy enforcement and user review, increasing the chance of unapproved command execution or file changes on the host.
