Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 97% confidence
- Finding
- The skill documentation clearly indicates use of environment variables, network access to WiseDiag cloud servers, and file writes to the local workspace, yet no corresponding permissions are declared. This creates a transparency and policy-enforcement gap: users or the hosting platform may not realize the skill can exfiltrate local image content, consume secrets, and write files, increasing the risk of unintended data disclosure or execution with broader capabilities than expected.
