Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill invokes shell commands (`bash <skill_dir>/scripts/meyo.sh ...`) but does not declare corresponding permissions or clearly surface that executable code will run. This creates a transparency and policy-enforcement gap: users or orchestrators may authorize the skill without understanding that it can execute local shell logic and perform networked actions on their behalf.
