cairo-security

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly focused on Cairo/Starknet smart contract security and contains concrete, finance-facing APIs and patterns: ERC20/ERC-4626 mint/transfer/withdraw examples (IERC20Dispatcher.transfer, mint, burn), L1/L2 bridge handlers (handle_deposit, withdrawal limits), SNIP-9/SNIP-12 signed outside-execution and nonce consumption, session-key spending policies, and guidance around token/asset management, paymasters, and vaults. These are specific crypto/blockchain financial operations (transfers, minting, bridging, signed meta-transactions) — not generic tooling — and thus enable direct financial execution paths.