Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill instructs the agent to execute a Python script that reads an API key from the environment, performs network requests to a third-party service, and uses local caching, yet the skill does not declare permissions for those capabilities. This weakens user awareness and policy enforcement because sensitive actions such as external data transfer and local file access can occur without explicit disclosure or consent boundaries.
