Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 96% confidence
- Finding
- The skill advertises and instructs use of capabilities that access environment variables, read/write files, and perform network requests, but it does not declare any permissions or trust boundaries. This creates a transparency and policy-enforcement gap: users and host systems cannot accurately assess what the skill will access, and scheduled execution amplifies the risk of undisclosed data access or exfiltration.
