Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 86% confidence
- Finding
- The skill documentation describes and enables capabilities to read environment variables, read local files such as scripts/.env, and make outbound network requests, but it does not declare corresponding permissions. This creates a transparency and governance problem: users or orchestrators may approve or run the skill without understanding that secrets and user input will be sent to an external API.
