stacks

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about a blockchain node and includes RPC endpoints and workflows for transactions: encode/sign, publish transactions/contracts, contract-calls, PoX mining (burn commitments), fee/cost estimation, and testnet tx flow. Those are concrete crypto/blockchain transaction and signing capabilities — i.e., tools to create and send on-chain transactions — so it provides direct financial execution authority.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly covers "Init and Service" and "service setup" (systemd, SysVinit, macOS LaunchAgents, paths and user), which can require editing system service files, changing system paths, or creating service users — actions that need sudo and modify the machine state.