precoro

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill requires installing and running the Membrane CLI (e.g., "npm install -g @membranehq/cli" / "npx @membranehq/cli@latest"), which fetches and executes remote code from the npm registry (https://www.npmjs.com/package/@membranehq/cli) at runtime, so it is a required external dependency that executes remote code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an integration for Precoro — a procurement/financial management system — and explicitly exposes financial entities and actions (Payment, Vendor Payment, Purchase Payment, Bank Account, Credit Card, Customer Payment, Payment Method, etc.). It uses the Membrane CLI to run connector actions and proxy API requests (including POST) against Precoro, which would allow creating or executing payment-related operations. Because the skill is specifically designed to interact with procurement/payment records and can run Precoro actions that likely create/send payments, it provides direct financial execution capability.