Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill exposes code paths that use environment variables and make outbound network requests, yet it does not declare equivalent permissions or constraints. In a web-automation skill that can log into apps, scrape authenticated content, and submit actions to a hosted third-party service, this mismatch weakens policy enforcement and can cause users or orchestrators to invoke a capability set broader than they intended.
