Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill documents shell execution capabilities such as running guard scripts, curl, pkill, cp, and systemctl, but it does not declare corresponding permissions. This creates a transparency and least-privilege problem: an agent or user may authorize the skill based on incomplete metadata, while the documented workflow can modify files, kill processes, and restart services.
