pandle

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill instructs users to install/run the Membrane CLI at runtime (e.g., npm install -g @membranehq/cli and npx @membranehq/cli@latest), which fetches and executes remote code from the npm registry (e.g. https://www.npmjs.com/package/@membranehq/cli) and is required for the skill to operate, so it constitutes a runtime external dependency that executes remote code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is a dedicated integration for Pandle, a cloud accounting system, and exposes explicit financial entities and actions (Payment, Refund, BankAccount, Transaction, Invoice, Bank reconciliation, etc.). It provides CLI actions and a proxy that can call the Pandle API with HTTP methods (POST/PUT/PATCH/DELETE) and Membrane handles authenticated requests. These are specific, purpose-built financial operations (creating/updating payments, refunds, transactions and related bookkeeping records), not a generic browser or generic-API tool. Because it directly targets accounting/payment-related endpoints and can modify financial records (including creating payments/refunds), it constitutes direct financial execution capability.