lightning

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for Lightning Network operations (LND/lncli) and includes commands and procedures that create and pay invoices, close/reopen channels, rebalance liquidity, and otherwise move Lightning/Bitcoin funds. It auto-invokes on LND-related environment variables and performs end-to-end payment verification (addinvoice, payinvoice). These are specific crypto/blockchain financial execution capabilities, not generic tooling.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt instructs the agent to directly modify system configuration and service files (lnd.conf, systemd/services, env vars) and to execute system-level operations (channel/service management), which can change the machine state and typically require elevated privileges.