Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 81% confidence
- Finding
- The skill documentation explicitly instructs users to install dependencies and states that alert data is stored in `~/.config/crypto/alerts.json`, which implies file read/write behavior. Because no permissions are declared, users and policy systems are not given transparent notice that the skill persists data locally, creating an avoidable trust and safety gap.
