Missing User Warnings
Low
- Confidence
- 84% confidence
- Finding
- The guidance explicitly recommends loading remote images directly from external URLs without warning that doing so causes outbound requests to third-party servers during preview or rendering. This can leak IP addresses, request metadata, and timing information, and may introduce reliability or compliance issues if untrusted or user-specific URLs are used.
