[rapnie]

if you add an URL to your message before sending, then a URL preview is generated (fetching image and some info text).. so i was pondering, if it _could_ be that this code, locally on your phone, can access the rest of the message content and send it later to WA

[sentamalin]

I figure that it's showing the Metadata for the pages you provide links for. A ton of other messaging platforms provide that ability to show information about the link.

Anything could be sending your message unenciphered. A client could get compromised. It could be pulling an IMAP/E-Mail shenanigans of sorts when it sends your Drafts up. It really falls on how much Trust you're willing to give on its claims.

I guess if you'd like to find out, you could watch what it sends for a while to make sure WhatsApp isn't doing anything funny.

[rapnie]

Yes, I realized that. The client doesn't need to be compromised.. the URL detecting occurs as-you-type, so its parsing the message anyway.

Wrt monitoring.. they'd probably send it encrypted if they do this at all