Missing User Warnings
Low
- Confidence
- 87% confidence
- Finding
- The documentation describes commands that query Tautulli using an API key and retrieve user activity, watch history, and server information, but it does not clearly warn that these actions access potentially sensitive viewing-behavior data and transmit credentials to a remote endpoint. In this context the skill is meant to interact with Tautulli, so network access is expected, but the lack of privacy and data-handling notice can mislead users about the sensitivity of the information exposed.
