Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill declares broad operational behavior including local file reads, file writes, and shell execution, but does not declare permissions or constrain those capabilities. In this context, the undocumented capabilities are security-relevant because the workflow reads local credential material, writes generated artifacts, and launches services, increasing the attack surface and reducing review transparency.
