Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill directs the agent to read and write local files and execute shell commands, yet it declares no permissions or capability boundaries. In a wallet-management context, undeclared shell/file access is risky because it enables sensitive operations like installing software, handling secrets, and deleting wallet artifacts without transparent review.
