Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 96% confidence
- Finding
- The skill documents use of file read/write, shell commands, and network access, but does not declare permissions or boundaries for those capabilities. That creates a transparency and policy-enforcement gap: an agent may invoke powerful operations such as reading env files, calling external APIs, or running shell commands without the user or platform having an explicit permission model to review or constrain them.
