Missing User Warnings
Medium
- Confidence
- 89% confidence
- Finding
- The logging section describes capture of session and recall metadata, and the broader TP4 context suggests user message text may also be logged, but the skill does not warn users about privacy implications or data retention. In a memory-oriented skill, this increases the risk of exposing sensitive conversational, project, and behavioral data through logs accessible to developers, operators, or downstream systems.
