Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill advertises and references executable scripts that perform network access and likely monitoring/output behavior, but the skill metadata declares no permissions. This creates a trust and sandboxing gap: a user or host system may treat the skill as low-risk while it can still initiate external requests and potentially write files/logs during monitoring workflows.
