Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 85% confidence
- Finding
- The skill describes operational capabilities that imply environment access plus file read/write behavior, but it does not declare corresponding permissions. That creates a transparency and policy-enforcement gap: operators may enable the skill without understanding it can access local paths and write persistent audit data, weakening least-privilege controls.
