Missing User Warnings
Medium
- Confidence
- 92% confidence
- Finding
- The README promotes sending user travel searches to multiple third-party services such as Firecrawl, Ctrip, 12306, Tequila, and Amadeus, but it does not clearly warn users that their itinerary data will be transmitted externally. Travel queries can reveal sensitive personal information such as planned movements, dates, and destinations, so omitting an explicit privacy/data-sharing notice is a real security and privacy weakness in an AI skill context.
