Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill documentation describes capabilities that access environment-like credential storage and read local files for attachments/HTML input, but it declares no corresponding permissions. This creates a mismatch between what the skill can do and what a reviewer or enforcement layer may expect, weakening transparency and increasing the chance of unintended credential handling or file access without explicit approval.
