Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill invokes shell commands extensively (`source`, `identify`, `lasutil`, `jq`, helper scripts) but does not declare shell permissions. This creates a capability transparency problem: the runtime may execute local commands, access local files, and interact with external services without an explicit permission contract, increasing the chance of unsafe execution and reducing user/operator visibility.
