Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 81% confidence
- Finding
- The skill advertises shell-based setup (`bash scripts/setup-brave-search.sh`) and the analyzer detected shell capability, but the metadata declares no corresponding permissions or explicit capability boundaries. This is dangerous because users may run local shell commands that collect secrets, modify config files, or make network calls without clear disclosure or permission gating.
