Missing User Warnings
Medium
- Confidence
- 95% confidence
- Finding
- The skill explicitly allows `document_url` to be a local file path and states that local files will be uploaded to a remote file service, but it does not present this as a clear user-facing warning or consent boundary. This creates a real data exfiltration risk because users may reasonably believe processing is local when sensitive documents are instead transmitted off-host.
