Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill advertises and orchestrates capabilities that require environment access, persistent file writes, and outbound network requests, yet it declares no permissions. This creates a transparency and policy-enforcement gap: users or hosting systems may treat the skill as lower risk than it actually is, increasing the chance of unintended data access, network egress, or filesystem modification when the pipeline runs.
