Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill instructs use of environment variables, local file reads/writes, and network/API access, but it does not declare any permissions. Even though the stated use case is legitimate, undeclared capabilities weaken transparency and consent boundaries: an agent or user may invoke the skill without realizing it will access credentials, write workspace artifacts, and make external requests.
