Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill documentation and usage clearly indicate network access and file-writing capability (`--out "output.txt"`), but the metadata declares only tools/env requirements and does not declare corresponding permissions. This can mislead reviewers and users about the skill's operational scope, reducing transparency and increasing the chance that a skill with data exfiltration or unintended disk-write behavior is approved or run without appropriate controls.
