Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill invokes Python scripts, reads and writes local files, uses environment-backed API credentials, and performs outbound network actions, but no permissions are declared in the manifest. That creates a transparency and governance gap: users and the host system cannot accurately assess or gate the skill's access to sensitive resources such as local memory files, Telegram targets, and API secrets.
