Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill metadata declares no explicit permissions, yet the content describes capabilities consistent with environment access, file read/write, and network-driven operations such as loading user configuration, saving chain files, and searching or interacting with external data. This mismatch weakens security review and enforcement because downstream systems or users may trust the declared permission surface while the skill actually orchestrates sensitive operations.
