Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill describes capabilities to read environment variables, write files, invoke shell scripts, and make network requests, yet it declares no permissions or user-facing constraints. This creates a transparency and policy-enforcement gap: a caller may trigger sensitive actions without informed consent or least-privilege review, especially since the skill also handles merchant tokens and API responses.
