Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill documentation describes executing local Python scripts that perform network access and likely produce output files or formatted artifacts, yet the skill declares no permissions. This creates a transparency and policy-enforcement gap: an agent or reviewer may treat the skill as low-risk while it can invoke shell commands, reach external services, and potentially write data locally.
