Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill documentation describes capabilities including file read/write, network access, and shell execution, but no explicit permissions are declared. This creates a transparency and governance gap: consumers of the skill may not realize it can persist credentials locally and make authenticated network calls, which increases the chance of unsafe deployment or overtrust. In an OAuth/publishing skill, these capabilities are expected, but they still should be declared and constrained.
