nunchuk-coldcard-hsm

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). Contains examples and commands that pass passwords and TOTP codes as literal command-line arguments (e.g., --text-secret "my-secret-password", ckcc auth alice "my-secret-password" and ckcc auth alice 123456), which would require the agent to handle or reproduce secret values verbatim and thus poses an exfiltration risk.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed to manage and sign cryptocurrency transactions using a Coldcard hardware wallet integrated with Nunchuk. It includes direct commands and workflows to enroll keys, export descriptors, generate and sign PSBTs (e.g., ckcc sign --base64, nunchuk tx sign --psbt), start HSM mode (ckcc hsm-start), authorize HSM users (ckcc auth <user>), and configure policies that control spending limits. These are specific crypto/blockchain wallet operations that can create and authorize on-chain spends, i.e., move funds.