Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill instructs use of environment variables and shell scripts/curl commands but does not declare corresponding permissions. This creates a capability/permission mismatch that can undermine least-privilege controls and surprise the hosting agent into exposing secrets or shell execution paths that were not explicitly reviewed. In this context, the skill also handles an API key, so undeclared env access is more sensitive than a purely informational skill.
