Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill clearly relies on environment access by instructing users to set `BASE_PRIVATE_KEY`, but the metadata declares no permissions. That mismatch can cause agents or users to run the skill without understanding it needs access to sensitive credentials, increasing the chance of unsafe execution or accidental secret exposure.
