Custom claims not added to access_token despite Rule

You would need to add the claim ( https://carolpettirossi.com/email ) to your scope:

That’s not correct, it’s not required to add the scope in the request. With just the rule provided above, the custom claim will always be added, regardless of requested scopes.