Comment by lucb1e

Bringing in a phone with decryption keys for this conversation is a risk, then, not just Signal's featureset...

I agree it could be hardening to allow users/organizations to disable this feature, and also other features such as automatic media decoding and other mechanisms that are trade-offs between security and usability, but simply does not meet the definition of a vulnerability (nobody will assign this a CVE number to track the bug and "resolve" it)