supabase-functions

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill includes an explicit Stripe integration: it imports the Stripe SDK, references STRIPE_SECRET_KEY and STRIPE_WEBHOOK_SECRET, and shows a webhook handler for checkout.session.completed. That is a specific payment gateway integration (Stripe) rather than a generic tool, and it provides the credentials and code paths to interact with payment events/APIs—i.e., direct financial execution capability.