phantom-wallet-mcp

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's MCP setup runs external code at runtime via "npx -y @phantom/mcp-server" (which downloads and executes the @phantom/mcp-server package from the npm registry), so the fetched content executes remote code and is a required dependency.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly provides crypto wallet operations: it exposes tools to get wallet addresses and to build, sign, and send transactions (transfer_tokens), to buy/swap tokens (buy_token), and to sign transactions/messages across multiple chains (sign_transaction, sign_message). These are direct cryptocurrency financial execution capabilities (wallet transfers, swaps, and signing) as listed in the "Direct Financial Execution" criteria.