r3

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill exposes explicit payment and banking objects (Payment, Invoice Payment, Credit Card Charge/Refund, Deposit, Trust Transaction, Retainer Payment, Firm Bank Account, Expense Payment, Payment Refund, Trust Request Payment, etc.) and lists integrations with payment/banking services (Plaid, Lawpay, QuickBooks/Xero integrations). It also instructs using Membrane to run actions and proxy direct HTTP requests (POST/PUT/PATCH) to the R3 API, which enables creating charges, refunds, deposits, and other payment transactions. These are specific financial-execution capabilities (not generic browser or HTTP tooling), so the skill can directly move or manage money.