Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill declares only a simple email-validation purpose, but its documented behavior requires environment access, local file reads/writes, and network operations without explicitly declaring those permissions. This creates a transparency and least-privilege problem: operators may approve a seemingly low-risk skill without understanding it can access credentials, modify local state, and make external requests.
