Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 82% confidence
- Finding
- The skill declares access to environment/config-held GitHub credentials and clearly performs networked actions against GitHub, but it does not declare explicit permissions governing those capabilities. In an agent ecosystem, missing permission declarations can undermine policy enforcement and informed user consent, especially for a skill that can both read data and perform write operations such as creating issues or repositories.
