Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 85% confidence
- Finding
- The skill declares use of an environment variable/API key and instructs running a Python script that performs a remote verification lookup, but no explicit permissions model is declared despite requiring env, file_read, and network capabilities. This creates a trust and review gap: the skill handles highly sensitive PII (name, phone number, ID card) and can transmit it externally, so missing permission declarations reduce user visibility into what data and capabilities are being used.
