Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill declares environment variable access to live X API credentials but does not declare corresponding permissions beyond the raw env list in metadata. That creates a governance and transparency gap: a user may not realize the skill can access account-linked secrets and perform authenticated actions on their behalf. In this context, undeclared capability is more dangerous because the skill can publish to a real public account.
