Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 96% confidence
- Finding
- The skill advertises and documents network, file read, and file write capabilities but declares no permissions, which prevents users and any permission-gating system from understanding the real blast radius. In this context the skill can access local notes, manipulate workspace files, and make network requests through SiYuan, so the missing declaration materially increases the risk of unauthorized data access or modification.
