Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 98% confidence
- Finding
- The skill clearly uses sensitive capabilities: it reads a private key from environment variables and performs authenticated network interactions with a blockchain RPC and a third-party API, yet no explicit permissions are declared. This creates a transparency and governance gap: an agent platform or reviewer may underestimate the skill's authority, even though it can spend real funds and exfiltrate signed outputs to external services.
