Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill declares no explicit permissions, yet its documentation and metadata indicate it shells out to external binaries (`curl`, `jq`) and performs network requests. This creates a transparency and consent problem: users and reviewers are not clearly informed that the skill executes shell-based operations and sends data off-host, which can lead to unreviewed external data transmission.
