Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill clearly relies on shell execution and environment-based credentials, but it does not declare permissions to reflect those capabilities. This weakens platform trust boundaries and informed consent because users or orchestration layers may not realize the skill can invoke commands and access sensitive environment variables such as API tokens.
