Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill advertises substantial capabilities—filesystem access, environment access, shell execution, and network exposure—but does not declare permissions or trust boundaries. That omission makes it harder for operators and downstream systems to understand the risk of running a tool that can expose local scripts as remotely callable HTTP endpoints.
