Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 82% confidence
- Finding
- The skill declares executable script usage and explicitly reads API credentials from environment variables, but it does not declare corresponding permissions or clearly surface that capability in a permission model. This creates a transparency and governance gap: the runtime can access sensitive secrets without an explicit user-visible declaration, increasing the risk of unintended credential exposure or misuse if scripts are modified or abused.
