Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 89% confidence
- Finding
- The skill declares no permissions, yet its instructions clearly require network access, reading and writing local files, and accessing environment-stored secrets. This creates a transparency and consent problem: a user or runtime may authorize the skill under a narrower trust model than its real behavior, increasing the chance of unintended secret access or file modification.
