Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill advertises and instructs use of shell, network, environment-variable access, and file-write behavior, but no explicit permission declaration is present. This creates a transparency and governance gap: operators may invoke a capability-rich skill without understanding that it can write data locally, read session context, and make outbound requests, increasing the chance of unsafe use and poor policy enforcement.
