Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill exercises file read, file write, shell execution, and network capabilities but does not declare permissions or clearly constrain them. This undermines least-privilege review and can cause the agent to perform sensitive operations that users and policy systems are not expecting.
