Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises executable shell commands and external network interaction via curl/jq and scripts, but does not declare corresponding permissions or trust boundaries. In an agent ecosystem, this can cause the host to under-enforce safeguards, leading operators to run networked commands they did not explicitly authorize.
