Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill instructs the agent to use Python scripts that make outbound HTTP requests and execute shell/CLI commands, but it does not declare those capabilities or permissions. This weakens governance and user/host awareness, making network access and command execution occur implicitly and increasing the risk of unintended data access or execution in environments that rely on permission declarations for sandboxing and review.
