Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?
With no annotations, the description carries full burden for behavioral disclosure, but it only states the core function. It omits critical details: whether this is a read-only operation, what authorization is required, whether it returns permissions for the current user or all users, and any rate limits or performance implications. The agent cannot infer side-effect-free behavior without explicit mention.
Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.