Description-Behavior Mismatch
Medium
- Confidence
- 95% confidence
- Finding
- The documentation states that the provider does not contact or store user data, yet the skill later declares a local storage component for logs and history. This creates a material transparency and privacy mismatch: users may provide sensitive contract, meeting, or donor-related content under a false assumption that nothing is retained.
