Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 93% confidence
- Finding
- The skill declares no permissions even though its documented behavior requires environment access, local file reads, and network communication. This is dangerous because operators and policy engines cannot accurately assess or constrain what the skill will do, especially when it handles SP-API credentials and exposes data over the network.
