Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill documentation declares required binaries and environment variables but does not declare explicit permissions despite clearly requiring shell execution, network access, environment access, and filesystem reads. This weakens user consent and platform enforcement because the skill can perform materially sensitive actions, including sending on-chain transactions and reading local config or API keys, without transparent permission scoping.
