Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises networked feed fetching, CVE enrichment, Ghost publishing, and notifications, yet the documentation shows no explicit permission model or warning about the required network and shell-like capabilities. This creates a transparency and governance gap: operators may enable the skill without understanding it can make outbound requests and invoke external messaging mechanisms, increasing the chance of unintended data egress or misuse.
