Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill instructs the agent/user to run shell scripts and shell commands, but the manifest does not declare corresponding permissions or capabilities. This weakens transparency and policy enforcement because a reviewer or runtime may underestimate what the skill can execute, increasing the chance of unintended command execution or unsafe integration.
