Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 81% confidence
- Finding
- The skill advertises an executable shell script and API-backed workflow while declaring no permissions, creating a capability/permission mismatch. In an agent environment, undeclared shell access can lead to unexpected command execution paths, external network interaction, and a larger attack surface than users or orchestrators expect.
