Missing User Warnings
Medium
- Confidence
- 91% confidence
- Finding
- The skill explicitly advertises capabilities to read codebases, edit files, run commands, create commits/PRs, and use external integrations, but it does not present clear user-facing warnings about the possibility of modifying local files, executing shell commands, or transmitting data to external services. In an agent-skill context, that omission can cause users to invoke high-impact actions without understanding the operational and privacy consequences.
