Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill advertises and relies on environment access, file read/write, and network behavior but does not declare any permissions or user-facing constraints. This weakens informed consent and capability scoping, making it easier for the skill to access local credentials, write shareable artifacts, and exfiltrate data through remote API calls without clear visibility to the user.
