guidewire-enterprise-rbac

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an RBAC implementation for Guidewire InsuranceSuite, but it explicitly defines API roles and endpoints that allow creating/administrating payments (e.g., ClaimCenter permissions including /claim/v1/claims/{id}/payments with operations [POST], and BillingCenter roles like bc_payment_admin / "Payment Handler"). Those are specific APIs/functions that can be used to execute payments (i.e., send money) rather than generic tooling. Therefore it qualifies as direct financial execution capability.