Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill describes substantial capabilities—reading environment secrets, writing configuration files, making network requests, and invoking shell commands—yet declares no explicit permissions. This creates a transparency and consent gap: operators may install or approve the skill without understanding it can exfiltrate secrets, modify local state, or execute external commands.
