Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill invokes shell commands (`lasutil`, `source`, variable expansion) but does not declare the shell/code-execution capability. This weakens least-privilege controls and can cause the agent to run local commands without an explicit permission boundary, increasing the blast radius if the skill or its dependencies are modified or abused.
