Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 70% confidence
- Finding
- Without declared permissions the skill's intent is opaque and cannot be validated.
Security audit
Security checks across malware telemetry and agentic risk
This is a small GeoJSON inspection skill that reads user-supplied GeoJSON input and runs a local Python helper without hidden network, credential, persistence, or destructive behavior.
Install if you need local GeoJSON inspection. As with any file-analysis skill, only point it at files you intend to inspect; it does not appear to transmit data or modify files.
63/63 vendors flagged this skill as clean.
No suspicious patterns detected.