Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill instructs the agent to perform network access to external domains and to download STEP files to local storage, but the skill declares no permissions. That mismatch is a real security issue because it hides the skill's operational capabilities from the permission model and review process, making external data exfiltration, unreviewed downloads, and filesystem writes easier to introduce without explicit consent boundaries.
