trade-tokens

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill invokes and relies on "npx agnic@latest" at runtime, which fetches and executes remote package code from the npm registry (e.g., https://registry.npmjs.org/agnic), so external code is executed as a required dependency.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed to perform on-chain token swaps: it targets the Base mainnet, lists supported tokens, and provides concrete commands to preview and execute trades (npx agnic@latest trade ... --json). The execute command returns a transactionHash and explorerUrl, indicating it sends blockchain transactions (crypto swaps/wallet operations). This is direct crypto/financial execution capability.