Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill advertises and demonstrates network and shell-capable behavior such as connecting to a browser over CDP and auto-starting Edge, yet declares no permissions. This removes an important trust boundary for users and reviewers, making it easier for a skill with powerful host and browser access to run without informed consent.
