Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill metadata declares no permissions, but the documented behavior clearly uses environment variables, writes an API key to a local file, and performs authenticated network access. This under-declaration is dangerous because it hides sensitive capabilities from reviewers and users, reducing informed consent and making secret handling and outbound data access less visible.
