Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 85% confidence
- Finding
- The skill declares no permissions, yet its documented behavior clearly implies shell execution and environment-dependent access through the `temp` binary and filesystem paths. This creates a transparency and least-privilege problem: users and the platform cannot accurately assess what capabilities the skill needs before installation or execution.
