Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill documentation describes persistent reading and writing of local memory files, but the metadata does not declare corresponding permissions. This creates a transparency and consent problem: users and hosting platforms cannot accurately assess that the skill can access and persist conversation-derived data in the local workspace.
