Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill instructs the agent to install packages and run a local script with an optional `--output <output.json>` argument, which implies file-write capability, but no permissions are declared. Undeclared write behavior is risky because users and policy systems cannot accurately constrain side effects, and a crafted workflow could cause unexpected files to be created or overwritten during analysis.
