Missing User Warnings
Medium
- Confidence
- 95% confidence
- Finding
- The skill instructs users to connect an MCP client to a third-party remote endpoint over SSE via `npx mcp-remote` without any disclosure about what prompts, tool arguments, usage metadata, or other workspace-derived data may be transmitted off-platform. Because MCP tools can be invoked within an agent workflow, this creates a real data exposure and trust-boundary risk, especially when the skill markets write-capable and metered services but does not warn users to review privacy, authentication, or data-handling implications before connecting.
