Context-Inappropriate Capability
Low
- Confidence
- 91% confidence
- Finding
- The script loads the parent project's .env file and uses COMFYUI_SERVER_URL from it, which extends the skill's trust boundary beyond its declared image/video generation purpose. In an agent setting, this can unintentionally consume environment-derived configuration from the host project and route requests to attacker-controlled or unintended endpoints.
