Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill declares environment variables and references a Python script that can read local files, access secrets, and send data over the network, but it does not declare explicit permissions for those capabilities. In a KYC OCR skill, this matters because local document images and API keys are sensitive, and undeclared capabilities reduce transparency and policy enforcement for agents or marketplaces deciding whether the skill is safe to install and run.
