Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill instructs the agent to read and write files, invoke local scripts, and package artifacts, which are meaningful capabilities, but it declares no explicit permissions or guardrails. In a skill that can create or modify other skills, this broad undeclared access increases the chance of unintended filesystem changes or script execution without clear user consent boundaries.
