Missing User Warnings
Medium
- Confidence
- 87% confidence
- Finding
- The skill explicitly instructs users to expose local APIs to a remote network but does not include any warning about authentication, data sensitivity, access control, or the risk of unintentionally publishing internal services. In a security-sensitive gateway skill, omission of these warnings can lead users to expose admin panels, internal APIs, or trusted localhost-only services to untrusted remote agents.
