Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill instructs the agent to run local Python scripts that can read and write configuration files, access environment-backed credentials, and make network requests to Feishu APIs, yet the skill declares no permissions. This creates a transparency and governance gap: users and enforcement systems may not realize the skill can modify local state, use stored secrets, and perform external actions on tasks, increasing the risk of unintended data access or state-changing operations.
