Problem: Temporary files created by Diffusion a la "View Raw File" link are exempt from any permissions imposed on their originating repository.
Expected: Viewing a file should not expose it to all users of the system until manually deleted.
Proposal: At the time of creation, temporary files should retain a reference to the permission rules set on their parent repository where applicable, so that Phabricator may beckon thee away as it would if the user were trying to browse the repository that they are unauthorized to view.
Kudos: Kudos may be sprinkled on every other facet of Phabricator from front-end to rear. This is one marvelous project.