Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill documentation indicates use of environment variables, local file access, and outbound network calls, but no corresponding permissions are declared. This creates a transparency and policy-enforcement gap: an agent or reviewer may authorize the skill under incomplete assumptions, while it can still access secrets and external services during execution.
