Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill documentation instructs use of a Python script that reads input files, writes CSV output, invokes the AWS CLI, and may download/cache pricing JSON over the network, but the skill declares no permissions. This creates a capability transparency gap: users or orchestrators may run a skill with filesystem, shell, and network effects they were not informed about, increasing the risk of unintended data access, command execution pathways, or external connectivity.
