Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill declares required environment variables and instructs use of networked clients/curl, but does not declare explicit permissions for those capabilities. That creates a governance gap: operators may not realize the skill can access secrets and transmit user prompts or other data to an external service. In a skill that is specifically designed to call a third-party API, this omission is not inherently malicious, but it weakens review and consent controls.
