Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill description indicates access to environment variables, file writing, network access, and shell-executed tooling, yet it declares no explicit permissions model. That mismatch creates a transparency and policy-enforcement gap: a host may grant or deny execution based on declared permissions, while the skill can still attempt sensitive operations such as reading API keys, invoking ffmpeg, and sending data over the network.
