Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 85% confidence
- Finding
- The skill is declared as a documentation-only SQL visualization skill, yet static analysis detected file-read capability without corresponding permission disclosure. Undeclared file access expands the trust boundary: a user invoking a charting skill would not reasonably expect repository or local file inspection, which can expose sensitive files or metadata if the runtime permits it.
