Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill instructs the agent to run a bundled Python script that generates VietQR URLs, and the static analyzer detected network-capable behavior despite no declared permissions. Even if the intended behavior is legitimate, undeclared network access reduces transparency and can enable unexpected outbound requests, data exfiltration, or third-party dependency on user-supplied bank/account/payment details. In this context, the skill handles financial transfer metadata, which makes hidden or undeclared network use more sensitive than in a purely local utility.
