Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill invokes a Python helper, reads environment variables and a workspace .env file, and performs network requests to a local HTTP API, but the skill metadata declares no permissions. This creates a capability/visibility gap: operators and policy systems may treat the skill as less privileged than it actually is, while it can still access secrets like FING_API_KEY and query sensitive local network inventory data.
