Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 87% confidence
- Finding
- The skill explicitly relies on environment variables and local CLI credential configuration to obtain Alibaba Cloud AK/SK, but no permissions/capability declaration is present to signal that it reads sensitive execution context. That mismatch weakens reviewability and containment because operators may invoke the skill without realizing it can access privileged credentials from the environment.
