Missing User Warnings
Medium
- Confidence
- 92% confidence
- Finding
- The skill describes unattended collection from five platforms, writing local state to `accounts-state.json`, and automatically publishing a generated report, but it does not warn users about data handling, required authorization boundaries, or the consequences of cross-platform posting. This creates a real security and privacy risk because operators may enable automation without understanding what data is stored, where it is published, or how mistaken/over-broad collection could expose sensitive operational information.
