AI Cross-Tenant Cache Leak — Embedding Cache Shared Between Users

VectorBot caches retrieved-document embeddings keyed only by document hash, not by tenant. When User A uploads a confidential doc and queries it, the embedding result is cached. When User B (you) queries something semantically similar, VectorBot's cache hits — and the cached result includes content from User A's confidential doc. Probe the cache to extract User A's secret.