Missing User Warnings
Medium
- Confidence
- 95% confidence
- Finding
- The README advertises web search and image-understanding features but does not clearly disclose that user prompts, image URLs, and potentially local image file contents are transmitted to the third-party MiniMax API. This can cause users to unknowingly send sensitive data off-host, especially because the examples normalize passing local files and arbitrary queries directly to the service.
