Cost

Will it bankrupt the team that adopts it? Payload bloat, chatty tools, unbounded responses, expensive defaults.

Every check declares the minimum intensity at which it runs and the worst severity a finding can carry. Expand one for what it does, what it depends on, and a reproduction you can run against a server you own. Counts are live, from library 0.29.0.