Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill advertises and documents network access and local file reads/writes but does not declare corresponding permissions. That mismatch is dangerous because users or hosting platforms cannot accurately assess or constrain what the skill will do, especially since it also persists cookies locally and fetches remote content. In this context, undeclared capabilities reduce transparency and weaken trust boundaries rather than indicating overtly malicious behavior.
