Missing User Warnings
Medium
- Confidence
- 90% confidence
- Finding
- The skill description states that it will send generated previews to a group and call an external API, but it does not disclose to users what data may leave the local environment, when transmission occurs, or who can view the shared content. This creates a real privacy and data-handling risk because design requirements, attached reference images, and generated framework content may be exposed to third parties or unintended recipients without informed consent.
