Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill exercises sensitive capabilities—reading credentials from environment/config, writing files, and making outbound network calls—without declaring permissions. This undermines least-privilege review because users and platform controls cannot easily understand or constrain what the skill can access before execution. In this context, the risk is elevated because the skill handles cloud credentials and performs API calls against security infrastructure.
