Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill describes capabilities that imply file reads/writes and network access, but it does not declare permissions. This creates a transparency and governance gap: users and the platform cannot accurately assess what data the skill can access or transmit, especially since it stores express records locally and queries external logistics sources.
