Missing User Warnings
Medium
- Confidence
- 93% confidence
- Finding
- The skill explicitly supports converting remote URLs and writing PDFs to disk, but the documentation does not warn users that invoking it will trigger outbound network requests and local file creation. In an agent setting, this can lead to unintended data egress, access to attacker-controlled URLs, SSRF-like behavior against internal resources, or unauthorized file writes when the tool is selected automatically based on the skill description.
