Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill demonstrates access to environment variables via os.getenv("AGENTMAIL_API_KEY") but does not declare corresponding permissions. This creates a mismatch between documented capabilities and declared security boundaries, which can lead to over-trust and accidental secret exposure when the skill is executed in a broader agent environment.
