Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill declares powerful capabilities through metadata requirements and documented workflow behavior—environment secret access, local file reads/writes, shell execution, and network access to a third-party API—but does not declare explicit permissions for those operations. That creates a governance gap: users and enforcement systems may not receive accurate warning about credential use, local file overwrite/upload behavior, and cloud-side destructive actions such as deleting backtests.
