Missing User Warnings
Medium
- Confidence
- 92% confidence
- Finding
- The script sends the user-provided topic to external services via web_search and later gifgrep without any notice, consent, or validation. If a user enters sensitive research subjects, proprietary terms, or personal data, that information is disclosed to third-party services, creating a real privacy leak even though the behavior appears intended for functionality.
