Missing User Warnings
Medium
- Confidence
- 95% confidence
- Finding
- The skill compiles uploaded source materials and sends them to an external LLM API for extraction, analysis, and asset generation, but this file shows no user-facing consent, warning, or data-classification gate before transmission. If users provide sensitive brand documents, internal contact data, customer cases, or confidential strategy materials, those contents are disclosed to a third-party service unexpectedly, creating a privacy and confidentiality risk.
