First Seen
Feb 18, 2026
Last Scanned
Feb 22, 2026
Findings
3
Score
75/100
Findings (3)
Text combines credential access with network transmission
Each API key is scoped to a single agent. The key can only access that agent's emails, threads, attachments, and webhooks. No need to pass account_id or agent_id — they're auto-resolved from your ke...Remove the combination of credential access and network transmission from the tool. If the tool needs credentials, access them via a secrets manager and never transmit them externally.
Likely FP if the tool legitimately uses credentials for API authentication (e.g., reading an API key to make authenticated requests to the same service).
Detects MCP server configurations connecting to non-localhost remote URLs
"url": "https://api.xobni.ai/mcp/"Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.
Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).
Detects MCP server configurations connecting to non-localhost remote URLs
"url": "https://your-endpoint.com/webhook"Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.
Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).