this was my original thought as well. though the description in that link mentioning
Telegram requires interacting with a server which source code has not been released
would seem to indicate that any direction of traffic to any hop along the way which isn’t explicitly open source (which seems like it would be hard to accomplish for any browser) could result in the same warning.