Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill declares no permissions, yet its instructions clearly rely on environment variables, file creation on the Desktop, local HTTP serving, process control, and outbound delivery steps. This mismatch is dangerous because users and hosting systems cannot accurately assess or constrain what the skill will access and do, increasing the chance of unauthorized file handling or secret exposure.
