Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 90% confidence
- Finding
- The skill declares no explicit permissions while requiring sensitive environment variables and providing MCP-based remote tool access. This weakens reviewability and policy enforcement because operators may not realize the skill can authenticate to a live ERP backend and invoke server-exposed capabilities.
