Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 83% confidence
- Finding
- The skill documentation and detected capabilities indicate it can read/write local files and access the network, yet it declares no permissions. That weakens user transparency and consent, making it easier for a skill to handle credentials and control external devices without clear disclosure.
