Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill exposes meaningful capabilities—environment access, network access, and file writing—without declaring them, which prevents users and host systems from making informed trust decisions before execution. In this context, the omission is more dangerous because the skill also relies on a hardcoded .env path, external API usage, browser automation, and output file creation, all of which increase the risk of unintended data access or side effects.
