portfolio-management

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for financial operations and includes mechanisms to execute trades. It states it "processes portfolio data ... and executing trades based on predefined strategies," provides API endpoints (e.g., POST /api/portfolios/create, POST /api/portfolios/optimize), CLI commands to "manage" and "optimize" portfolios, requires a $PORTFOLIO_API_KEY for authenticated modifications, and notes integration with brokerage APIs to "trigger updates." These are specific capabilities to effect market orders / portfolio changes, not merely generic data access, so it grants direct financial execution authority.