Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises operational capabilities including environment-variable access, local file writes, network access, and shell execution, but does not declare permissions or constraints for them. That creates a transparency and governance gap: an invoking agent or reviewer may underestimate what the skill can do, increasing the risk of unintended data access, persistence, or external requests.
