Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill invokes a networked CLI and relies on environment-based authentication, but it declares no permissions or capability boundaries. That under-specification is dangerous because operators may approve or invoke the skill without understanding that it can access API keys, local config, and external services.
