Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill instructs users to run local Python and Node scripts, invoke ffmpeg, read environment/configuration, and write files such as .youtube.json and upload-state.json, yet it declares no permissions. That mismatch can prevent users or a hosting platform from understanding that the skill has shell execution and filesystem write capability, increasing the chance of unsafe execution with access to local credentials and project files.
