Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 83% confidence
- Finding
- The skill documentation instructs the user to read a bearer token from a local file (`~/.config/anova/token`) but does not declare that file-read capability. Undeclared sensitive file access reduces transparency and can bypass user expectations or policy controls around credential handling.
