Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill description indicates it reads environment variables and local files and writes output files, but it does not declare permissions for those capabilities. Undeclared access reduces transparency and weakens policy enforcement, making it harder for users or a runtime to understand and constrain what the skill can access. In this context the accesses appear aligned with the stated purpose, so the issue is more about insecure capability declaration than overtly malicious behavior.
