Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill instructs the agent to read a user-supplied local `.txt` file from an absolute path and to write multiple outputs under project directories, but the skill metadata does not declare those file access capabilities. This creates a permission-transparency gap: an operator may not realize the skill can access local files and persist data, increasing the risk of unintended exposure of sensitive local content or unsafe path usage.
