Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill explicitly instructs users to run a Python benchmark script that performs outbound network access to fetch model lists from documentation and call the OpenCode API, yet the skill declares no permissions. This creates a transparency and governance gap: users and the platform are not clearly informed that the skill will access external network resources, which can bypass expected review or consent boundaries.
