Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill instructs users to run shell scripts and describes environment/secret handling behavior, but it does not declare permissions or capabilities up front. That creates a transparency and consent problem: consumers may treat the skill as documentation-only while it actually drives shell execution and access to potentially sensitive environment context. In a security-oriented skill, hidden execution capability is more dangerous because users are encouraged to trust and broadly install it across projects.
