Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill clearly instructs the agent to perform live network access and file downloads, yet the metadata shown in SKILL.md does not declare corresponding permissions. This creates a permission/transparency gap: a reviewer or policy engine may underestimate the skill’s capabilities, while the skill can still fetch untrusted remote content and write it to the workspace.
