Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises file read/write behavior, including writing progress and learned content to local files, but does not declare permissions. Undeclared filesystem access weakens user and platform visibility into what the skill can persist or modify, which is especially relevant because it handles arbitrary user-supplied documents and writes derived content to memory stores.
