Missing User Warnings
Medium
- Confidence
- 84% confidence
- Finding
- The skill automatically loads API credentials from a local file or environment and uses them to send authenticated requests to an external service without any user-facing disclosure or consent boundary. In an agent/tooling context, this can cause users to unknowingly grant the skill access to workspace data and enables silent exfiltration of task metadata to ClickUp.
