Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 92% confidence
- Finding
- The skill declares itself as a simple LinkedIn school-detail lookup, but its documented behavior clearly includes reading environment variables, accessing local files, and making networked API calls without explicitly declaring those permissions. This weakens transparency and informed consent, making it easier for a user or platform to underestimate the skill's access to credentials and local state.
