Missing User Warnings
Medium
- Confidence
- 91% confidence
- Finding
- The README promotes webhook callbacks and external API usage but does not warn users that prompts, reference images, generated outputs, and task metadata may be transmitted to third-party services and callback endpoints. In an AI image-generation skill, this omission can lead to unintentional disclosure of sensitive business data or personal images because users may reasonably assume data stays local unless told otherwise.
