Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises shell, file read, and file write capabilities via its documented CLI workflows, but it does not declare any permissions or safety boundaries. That mismatch can cause users or hosting agents to run the skill with broader effective access than expected, increasing the chance of unintended local file modification or shell-side effects.
