Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill describes capabilities to read environment variables, invoke shell commands, make network requests, and write files, but it does not declare corresponding permissions or clearly surface them as security-relevant behaviors. This creates a transparency and governance gap: users and platforms may not realize the skill can exfiltrate data from env, persist API output locally, or invoke external services.
