Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 83% confidence
- Finding
- The skill describes concrete API calls, token handling, callback flows, and even Feedback API usage, yet no explicit permissions are declared. This creates a capability/permission mismatch that can hide the true trust boundary from reviewers and increase the chance of unintended network, file, or shell-enabled execution in the hosting agent environment.
