Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill advertises and operationally relies on sensitive capabilities including environment-variable access, filesystem writes, shell execution, and outbound network use, yet declares no permissions boundary. That mismatch can cause an agent platform or reviewer to underestimate what the skill can do, reducing user visibility and consent around audio downloads, API-key use, and local archival.
