Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill clearly directs use of environment variables, local file writes, shell/Python script execution, and network access via a proxy, yet no declared permissions are present. This creates a transparency and policy-enforcement gap: an agent or platform may invoke capabilities the user or runtime did not explicitly approve, increasing the chance of unexpected data access, persistence, or outbound transmission.
