Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill documents use of environment variables and outbound network/API access but does not declare corresponding permissions. That creates a governance gap: operators and users cannot accurately assess what the skill can access, and an agent may be allowed to exfiltrate credentials or perform remote actions without explicit consent boundaries. In a project-management skill that can mutate remote state, undeclared capabilities are materially risky.
