rate-limiting

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill includes an explicit integration with a payment gateway: a Stripe API call (stripe.subscriptions.retrieve) to resolve user subscription/price IDs to tiers. This is a specific, non-generic payment gateway API usage (not just a generic HTTP or browser tool), so it meets the criteria for Direct Financial Execution flagging even though the example is read-only (subscription lookup) rather than initiating payments.