Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill explicitly uses environment variables and networked execution via a Python client, but it does not declare corresponding permissions. This creates a trust and policy gap: a host may permit installation or invocation without surfacing that the skill can reach external services and consume secrets from the environment.
