Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill invokes an external API and requires a user-supplied token, which implies network access, but the manifest does not declare corresponding permissions. This creates a transparency and trust problem: users and platforms may not realize the skill can transmit prompts and credentials off-box, increasing the risk of unintended data exposure or policy bypass.
