Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill declares no permissions while explicitly describing capabilities to read environment configuration, read and write project files, persist state, and potentially execute commands as part of coding/test workflows. This creates a transparency and consent failure: a host or user may grant or invoke the skill without understanding its effective authority, increasing the risk of unintended file modification, command execution, or data exposure.
