Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill exposes file-reading and shell-execution capabilities in its instructions but does not declare permissions or constraints. That creates a gap between apparent and actual capability, increasing the chance of unintended command execution, unsafe file access, or bypass of user/operator expectations during invocation.
