Missing User Warnings
Medium
- Confidence
- 94% confidence
- Finding
- The README states that user text is sent to an external HTTP API for inspection, but it does not clearly warn users that their submitted content will leave the local environment and be processed by a third party. This creates a real privacy and data-governance risk, especially if users submit sensitive, regulated, or confidential text under the assumption the skill operates locally.
