Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises executable capabilities including shell access and file writing but does not declare permissions, which weakens user awareness and any permission-gating model around the skill. In an autonomous agent context, undeclared execution and write behavior can lead to unexpected command execution, local file modification, and expansion of trust beyond what a user reasonably expects.
