Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill documentation describes use of environment-loaded private keys and live RPC/network interactions, but the skill declares no explicit permissions for those capabilities. That creates a transparency and policy gap: an agent or user may invoke a fund-moving skill without clear permission scoping for secret access and external network use. In a DeFi skill that manages real funds, undeclared env and network access materially increases risk because those capabilities are exactly what enable key use and transaction submission.
