Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill advertises executable scripts that read and write local files, consume environment variables, and may send notifications, yet the skill metadata shown in the document does not declare those capabilities. This creates a permission-transparency gap: callers may invoke the skill expecting simple date conversion while the implementation can access sensitive local data and communicate externally through configured channels.
