Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill advertises and documents capabilities to read local files and make outbound network requests, but it does not declare any permissions. That mismatch is dangerous because it hides the true trust boundary of the skill, preventing proper review, consent, or sandboxing decisions before the agent accesses repository contents or contacts external hosts.
