Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 94% confidence
- Finding
- The skill describes capabilities to read environment variables, read/write local files, invoke shell commands, and make network requests, yet it declares no explicit permissions or trust boundaries. This creates a transparency and governance problem: users and hosting platforms may not realize the skill can access credentials and persist them locally while contacting a remote API.
