Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill demonstrates file-read capability by extracting from the .learnings/ directory, but the metadata does not declare permissions or scope this access. In a skill that feeds extracted content into future system prompts, undeclared file access increases the risk of silently ingesting sensitive or attacker-planted data into higher-trust prompt context.
