Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 88% confidence
- Finding
- The skill declares no explicit permissions while instructing use of environment variables, local file reads/writes to ~/.upkuajing/.env, and network/API access. This creates a transparency and consent problem: an agent or user may assume the skill is low-risk while it actually has broader capabilities, including credential handling and persistent local state changes.
