jaw-sdk-best-practices
Warn
Audited by Snyk on Feb 26, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill is explicitly for the JAW SDK, which is a blockchain smart-account SDK used to send transactions and manage on-chain payments. The doc repeatedly cites sending transactions, smart accounts, signing, subscription/recurring payments, headless USDC payments, batch payouts, paymasters (gas sponsoring), and an Account class for headless/AI agent wallets. These are concrete crypto/blockchain payment capabilities (wallets, signing, and sending value) rather than a generic tool, so it provides direct financial execution authority.
Audit Metadata