Missing User Warnings
Medium
- Confidence
- 86% confidence
- Finding
- The README explicitly advertises collection of privacy-sensitive host telemetry including network connections, processes, startup items, listening ports, drivers, and recent system events, but it does not warn users about the sensitivity of that data or describe consent, retention, or safe handling. In an agent skill context, this increases the risk that users trigger broad local inspection without understanding that potentially sensitive operational and personal data may be surfaced in reports.
