Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill declares no explicit permissions while clearly requiring sensitive environment access (`PRIVATE_KEY`) and outbound network access (`RPC_URL`, `REGISTER_API`). This under-declaration weakens user consent and reviewability, making it easier for a user to invoke a skill that can spend funds and transmit metadata without an accurate permission signal.
