Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill instructs the agent to run a pipeline that performs network access and writes files into the workspace, but the skill metadata does not declare those permissions. Undeclared capabilities reduce transparency and policy enforcement, making it easier for a skill to exceed expected trust boundaries or be executed in environments that did not explicitly authorize network and filesystem effects.
