Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill instructs use of environment variables containing API credentials and external web/API access, but no explicit permissions are declared. That creates a transparency and consent gap: a host or reviewer may not realize the skill can read secrets and make network requests, increasing the chance of unintended secret exposure or unauthorized outbound calls. In this context, the risk is real because the workflow explicitly depends on `ALPHASHOP_ACCESS_KEY`/`ALPHASHOP_SECRET_KEY` and web/API queries.
