Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill declares broad operational behavior involving environment variables, file reads/writes, and web search, but there is no explicit permissions declaration or user-facing consent boundary for those capabilities. That makes the trust boundary unclear and increases the risk that an agent will access local data or external network resources more broadly than the user expects.
