fix-bitcoin

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit examples that pass a passphrase directly on the command line (bitcoin-cli encryptwallet "strong-passphrase") which instructs embedding secret values verbatim in output/commands, an exfiltration risk.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is specifically designed for Bitcoin wallet/node operations and includes explicit commands to create, sign, and broadcast transactions (bitcoin-cli createrawtransaction, signrawtransactionwithwallet, sendrawtransaction), manage wallets (encryptwallet, backupwallet), and perform UTXO consolidation. Those are concrete crypto/transaction actions that can move funds, so this grants direct financial execution capability.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill instructs the agent to modify system configuration (bitcoin.conf), restart daemons, run bitcoin-cli commands that change wallet state (encryptwallet, backupwallet, sendrawtransaction) and perform filesystem/git operations — all actions that alter the machine's state and may require elevated privileges.