upgrade-vs-immutable-decision

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about Solana on-chain program governance and includes concrete on-chain actions: "Rotate authority to final holder or set to BPFLoaderUpgradeab1e none for immutable; record tx" and "verification commands/txids". Those are blockchain-specific operations that require signing and sending transactions to change program upgrade authority — a privileged crypto operation that can directly affect custody/control of assets. This matches the "Crypto/Blockchain (Wallets, Swaps, Signing)" category of direct financial execution.