Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises and instructs execution of bundled Python tools that imply shell, filesystem, environment, and possibly network access, yet the skill declares no permissions or capability boundaries. That omission can mislead users and orchestration systems about what the skill is allowed to do, reducing informed consent and making unintended file access or external actions more likely.
