Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill explicitly instructs the agent to execute shell and PowerShell commands, write files, and invoke local scripts, yet no declared permissions are present. That mismatch weakens the platform’s security boundary because users and orchestrators may not realize the skill can run code and touch local state.
