Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 91% confidence
- Finding
- The skill instructs the agent to use sensitive capabilities including environment access, network calls to the Figma API, local project reads, and writing files such as feedback logs, but does not declare corresponding permissions. This creates a trust and containment problem: users and policy systems may not realize the skill can access tokens, inspect local resources, and persist data to disk.
