Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill metadata declares runtime requirements but does not clearly declare or constrain effective capabilities, while the documented behavior requires network access, environment secret use, and likely local file writes during setup/runtime. This weakens the security boundary and informed-consent model, because a user or platform may invoke the skill without understanding that it can exfiltrate scraped content and stock data to external services using an API key.
