Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill documentation describes invoking a Node.js CLI that uses the system curl command, which implies shell-capable execution without any declared permission boundary. In an agent setting, undeclared shell capability is risky because it can enable file exfiltration or arbitrary command execution beyond what a user may expect from a simple upload skill.
