Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill explicitly instructs execution of Python scripts that read environment variables, write a local .env file, and call external APIs, yet it declares no permissions. This creates a capability/permission mismatch that can bypass user and platform expectations about what the skill can access, especially because it handles API keys and performs network operations.
