Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 70% confidence
- Finding
- Without declared permissions the skill's intent is opaque and cannot be validated.
Security audit
Security checks across malware telemetry and agentic risk
This skill is a disclosed writing-aid workflow with a local scoring script and no evidence of hidden access, exfiltration, persistence, or destructive behavior.
Installers should expect this skill to analyze and rewrite supplied marketing copy, and it may read a local marketing-context.md file for brand voice if present. Do not treat its humanity score as definitive authorship detection, but there is no artifact-backed security reason to block installation.
62/62 vendors flagged this skill as clean.
No suspicious patterns detected.