Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 97% confidence
- Finding
- The skill orchestrates file reads, shell commands, and broad project modifications but does not declare permissions up front. That makes the trust boundary unclear for users and increases the chance they invoke a powerful deployment skill without understanding it will inspect the workspace, execute CLI commands, and write config/hooks into multiple locations.
