test-environments

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly references a payment gateway (Stripe) in multiple places: the docker-compose test env sets STRIPE_API_KEY (sk_test_fake), the External Dependency Management table lists "Payment (Stripe)" with staging using Stripe test mode, and the MSW handlers include a specific mock for POST https://api.stripe.com/v1/payment_intents. These are concrete, payment-specific integrations (not generic API callers or browser automation), so the skill contains explicit payment gateway tooling and thus qualifies as direct financial execution capability (even if shown in test/sandbox mode).