Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 83% confidence
- Finding
- The skill documentation advertises network-capable behaviors such as loading images from URLs and installing/using a separate remote AI skill, yet the skill declares no permissions reflecting network use. This can mislead users and policy enforcement about the skill's true operational scope, increasing the chance of unexpected outbound requests and unsafe handling of untrusted remote content.
