Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill instructs the agent to read and modify files under a system Node module path and to use patching scripts, but it declares no permissions. This creates a mismatch between the skill's stated capabilities and its operational behavior, which can bypass user expectations and reduce safety controls around file access and modification.
