Skip to main content
Skills declare what they need access to. Permissions are shown to users before install.

Enforcement

  • Skills without execute:tools have their tools stripped at load time
  • Skills without declared permissions operate in legacy mode (all tools allowed)
  • Permission combinations that grant broad write or external-network access are promoted to a higher review tier during submission