Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill instructs the agent to use environment variables, read and create files such as .env, and make authenticated network requests, but the metadata does not declare corresponding permissions. This mismatch can undermine security review and consent controls because the skill's actual capabilities are broader than what a permission model would communicate to users or the host system.
