Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 80% confidence
- Finding
- The skill advertises executable commands that read inputs and write outputs, and also declares `python3` plus analytics support, but it does not declare permissions or clearly constrain filesystem access. This creates an authorization gap where the agent may perform file operations beyond what a user would reasonably expect from a valuation-only skill.
