Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill clearly instructs the agent to read and modify user files in place and to create new files, but it does not declare any permissions reflecting those capabilities. This creates a transparency and policy-enforcement gap: an orchestrator or reviewer may treat the skill as lower risk than it is, even though it can alter site content and generate artifacts across a target directory.
