Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises and requires capabilities including environment-variable access, local file reads/writes, and network access, but does not declare permissions explicitly. This weakens user visibility and consent around what the skill can access, making credential exposure, unintended filesystem modification, or outbound data transfer easier to hide behind a seemingly simple content workflow.
