reddit-ads

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill calls Anthropic via the Anthropic SDK (e.g., the Anthropic API at https://api.anthropic.com) at runtime to generate JSON recommendations that the agent parses and then executes (pausing/scaling/updating ads), so external model responses directly control agent actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly integrates with the Reddit Ads API and includes endpoints and client methods that create and modify campaigns/ad groups with budget fields (e.g., budget_total_amount_micros). Examples in the prompt show creating campaigns with daily/lifetime budgets and the optimizer service programmatically updating ad group budgets (client.updateAdGroup with budget_total_amount_micros), scaling budgets, and reallocating budget from paused ads to winners. These are direct programmatic controls over ad spend (financial budget manipulation) using authenticated API tokens. Therefore it provides direct financial execution capability for managing ad budgets.