Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 97% confidence
- Finding
- The skill clearly directs use of network access, local file reads/writes, environment variables, and shell commands, yet no explicit permission declaration is present. This creates a transparency and governance gap: an agent may perform sensitive actions such as downloading invoices, writing state files, and handling API keys without an upfront permission model or user review boundary.
