Missing User Warnings
Low
- Confidence
- 92% confidence
- Finding
- The README explicitly describes pulling protocol data from DeFiLlama, GoPlus, and performing on-chain verification, but it does not clearly warn that user-supplied protocol identifiers, URLs, contract addresses, or related lookup targets may be sent to third-party services. This creates a real transparency and privacy issue because users may assume analysis is local when in fact their investigation targets can be disclosed externally.
