Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill references environment-backed credentials (`SIMMER_API_KEY`) and trading authority, but the markdown indicates no declared permissions while still exposing capability expectations around env access. In agent platforms that rely on declared permissions for policy enforcement and user consent, this mismatch can enable broader-than-expected secret access or cause the skill to run with sensitive credentials without an explicit capability declaration.
