Missing User Warnings
Medium
- Confidence
- 94% confidence
- Finding
- The function returns raw `instructions` and `prompt_events` as part of the audit payload, and those structures can contain agent-facing prompt text, local instructions, and potentially sensitive embedded data. In this skill's context, the auditor is explicitly designed to ingest prompt/config/memory-like files, so aggregating and re-emitting that content increases the chance of exposing secrets, proprietary prompts, or malicious injected text to downstream consumers, logs, or UIs.
