Description-Behavior Mismatch
Medium
- Confidence
- 93% confidence
- Finding
- The script explicitly saves TikTok authenticated browser session state, including cookies and related storage, to a persistent JSON file on disk. That creates a reusable credential artifact which could be stolen, copied, or misused to access the account outside the intended login flow, and this persistence is broader than what is needed for simple report generation.
