Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill advertises and demonstrates shell-based execution of active security scanning commands, but no permissions are declared to signal or constrain that capability. This creates a trust and governance gap: an agent could invoke network scans or local scripts without clear user consent boundaries, which is especially risky for infrastructure-targeting actions.
