Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill documentation describes capabilities to read environment variables and local .env files, write generated images to the filesystem, invoke shell commands, and call external network APIs, but it does not declare permissions. This creates a transparency and consent problem: a host or user may authorize the skill without understanding that it can access secrets and local files and make outbound requests, increasing the risk of secret exposure or unintended file/network actions if the implementation is unsafe or compromised.
