Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill documents shell-capable command execution patterns but does not declare any permissions, which undermines least-privilege review and informed consent. In a Docker-management context, shell access can directly stop services, delete containers/images, and expose sensitive logs, so undeclared capability meaningfully increases risk.
