Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill exposes shell-capable operations through documented script and command execution, but it does not declare corresponding permissions. That mismatch can cause users or enforcement systems to underestimate what the skill is able to do, especially since it invokes multiple local scripts and external binaries like ffmpeg, ffprobe, and node. In this context the risk is elevated because the skill is explicitly an automation pipeline that will execute commands over user-supplied module directories.
