Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill declares required binaries and environment variables, but it does not expose an explicit permissions model despite clearly enabling network access and use of a secret-bearing environment variable. That mismatch can weaken sandboxing and review controls, making it easier for an agent or runtime to invoke external requests with `AISA_API_KEY` without a clear permission boundary.
