Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill advertises and instructs use of network access, shell commands, environment variables, and persistent file writes, but does not declare corresponding permissions. This undermines informed consent and security review because operators may install a skill that can modify local OpenClaw state and contact external services without an explicit permission model.
