Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill advertises and documents capabilities to fetch remote content, invoke shell/curl, access environment data, and write files, but it does not declare permissions. This creates a trust and review gap: users and security controls cannot accurately assess that the skill may read local context, make network requests, and persist content to disk or third-party destinations.
