Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill advertises no explicit permissions while its content and linked branches imply access to shell, network, environment data, and file writing. That mismatch weakens user consent and review controls, making it easier for a broadly triggered skill to perform sensitive actions unexpectedly.
