Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill advertises capabilities that include network access and environment interaction, but it does not declare permissions or present an explicit permission model in the skill manifest. That mismatch can mislead users and host systems about what the skill may do, especially because it can make paid hosted calls and manage a local wallet, increasing the chance of unintended external communication or use of sensitive local state.
