Missing User Warnings
Medium
- Confidence
- 93% confidence
- Finding
- The skill automatically sends user-derived prompts to an external service (SJinn) and returns externally hosted media URLs without any disclosure, consent, or privacy notice. This creates a real data-handling risk because user inputs may contain sensitive or proprietary information, and generated assets may be stored or exposed by the third-party provider.
