Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill declares no permissions, yet its documented behavior clearly requires shell execution, environment/config handling, and local file/database read-write operations. This mismatch weakens least-privilege controls and can cause the agent or reviewer to underestimate what the skill can access or modify.
