Description-Behavior Mismatch
Medium
- Confidence
- 91% confidence
- Finding
- The skill advertises local OCR-first but in practice skips local OCR and always sends full-page screenshots to a remote vision API. This is dangerous because users may reasonably expect data to stay local, while the actual behavior transmits potentially sensitive page contents off-host, increasing privacy and data exposure risk.
