Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill declares no permissions in metadata while its documented and detected behavior includes network access and shell/subprocess execution. This undermines informed consent and sandboxing decisions, because users and policy engines cannot accurately assess or restrict the skill before installation.
