Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill declares required environment variables and clearly relies on outbound network access, but it does not declare corresponding permissions. That creates a transparency and policy-enforcement gap: a host may not realize the skill can transmit API keys and user-supplied Twitter queries to an external service, increasing the chance of unsafe execution in environments that depend on explicit permission manifests.
