Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill instructs the agent to read local reference files and write JSON, Markdown, and PDF outputs, but it declares no explicit permissions. This creates a real least-privilege and transparency problem: an operator may invoke the skill without realizing it can access workspace files and create artifacts, which can lead to unintended data exposure or file modification if used in a broader agent environment.
