Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill advertises and instructs use of shell scripts, environment variables, and file I/O, but it does not declare corresponding permissions. This creates a trust and transparency gap: a caller may invoke the skill without understanding that it reads secrets, accesses local files, and executes shell-based workflows, which can lead to unintended data exposure or unsafe execution in agent environments.
