Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 96% confidence
- Finding
- The skill declares powerful capabilities through required environment variables, webhook exposure, Python execution, outbound HTTP requests, and temporary server behavior, but does not explicitly declare permissions. This creates a transparency and consent gap: users may install or invoke a skill that can access secrets, write files/runtime artifacts, and communicate over the network without clear permission signaling.
