Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill clearly relies on sensitive capabilities: reading an API key from the environment, making external network requests, and writing result files locally, yet it does not declare permissions. This creates a transparency and policy-enforcement gap where an agent or user may invoke a skill with broader access than is explicitly disclosed, which is especially concerning given the handling of medical data.
