Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill declares access to sensitive capabilities in metadata and behavior—environment-derived private keys, outbound network calls, and execution-oriented usage guidance—without an explicit permissions declaration. In a payment skill, this is especially risky because it can trigger blockchain transactions using a loaded wallet key, making capability scope and user consent critical.
