Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill includes shell commands that install packages, copy binaries/frameworks, modify runtime paths, and load a LaunchAgent, yet no permissions are declared. This creates an undeclared capability gap: users may believe the skill is documentation-only while it actually instructs privileged local system changes and persistence-related actions.
