nano-generate-qr

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill explicitly instructs running a remote npm package at runtime (e.g., bunx -y xno-skills@latest / pnpm dlx xno-skills@latest / npx -y xno-skills@latest), which fetches and executes remote code (xno-skills@latest) that the skill depends on, posing a supply-chain/remote-code-execution risk.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly built for a cryptocurrency payment flow (Nano). It generates nano: URIs with optional amounts, validates addresses, and gives agent-specific instructions tied to wallet lifecycle and protocol actions (delegating wallet creation/import to OWS, using nano-mcp-wallet to discover addresses, and calling receive to pocket funds). It also references MCP send/receive tools and wallet operations. These are specific crypto/Blockchain financial capabilities, not generic utilities, so it constitutes direct financial execution authority.