Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill clearly instructs direct execution of network-capable security tools via exec, but the manifest does not declare corresponding permissions or capability boundaries. This creates a transparency and governance gap: a reviewer or runtime may underestimate that the skill can perform active network actions, including scans and enumeration.
