Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill embeds substantial shell execution capability (`apt-get`, `pip`, `ffmpeg`, `bash`, `python`) but does not declare corresponding permissions or boundaries. That mismatch is dangerous because it can cause an agent to invoke command execution and package installation without clear policy gating, increasing the chance of unauthorized system modification or misuse of uploaded files.
