Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill declares no explicit permissions, yet its documented behavior requires reading an environment variable and making outbound network requests to RolesAPI. This mismatch can mislead users and policy engines about the skill's actual capabilities, reducing transparency and making it easier to approve or run the skill without understanding its data access and exfiltration surface.
