Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill advertises and instructs use of environment variables, local file reads/writes, and network-backed payment/authorization flows, but it does not declare corresponding permissions. This creates a transparency and consent gap: a host or reviewer cannot reliably enforce or present the skill's actual capabilities, increasing the risk of unexpected local data access or outbound requests during configuration, payment, or memory operations.
