bitrefill-cli

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill queries the MCP endpoint https://api.bitrefill.com/mcp at runtime to dynamically discover CLI subcommands and typed options, meaning remote content from that URL directly controls available agent commands/instructions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly enables real-money transactions: it provides commands like buy-products that complete purchases and supports numerous payment methods (bitcoin, lightning, ethereum, usdc_base, etc.). It documents programmatic crypto payment flows (x402_payment_url), on-chain payment_info (address, paymentUri), and requires an x402-capable signing wallet or account balance to execute payments. This is a specific tool/CLI designed to move money and perform crypto transactions, not a generic API caller or browser automation.