Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill documentation describes capabilities to read environment variables, perform file reads/writes, access the network, and invoke shell commands, yet no explicit permissions are declared. For an OAuth integration handling tokens and health data, this under-declaration reduces transparency and can lead users or the host platform to grant broader effective access than they realize. The context makes this more sensitive because the skill stores refresh tokens locally and retrieves personal health information.
