Context-Inappropriate Capability
Medium
- Confidence
- 90% confidence
- Finding
- The documentation explicitly instructs the skill to read an API key from the RISKGATE_API_KEY environment variable, which gives the skill credential-access behavior beyond merely consuming market data. In an agent setting, encouraging environment-variable access expands the trust boundary and can lead to unintended use of sensitive credentials or account-scoped actions without clear user consent.
