Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 84% confidence
- Finding
- The skill documentation indicates it reads credentials from environment variables, reads user-supplied files, and connects to a remote WebSocket API, but there is no declared permissions model covering those capabilities. This creates a real security governance issue because users and hosting platforms may not have clear visibility or enforcement over sensitive actions such as outbound network access and handling API secrets.
