tomato-pay

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for a payment processor ("Tomato Pay") and documents payment-specific actions (Payment Request, Payment, Refund, Merchant). It instructs use of Membrane CLI to run connector actions (membrane action run) and to proxy arbitrary Tomato pay API calls (membrane request) including POST/PUT/DELETE, with Membrane handling auth. Those capabilities are specifically designed to create/authorize/refund transactions and thus provide direct financial execution authority rather than a generic tool.