manage-secrets

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes integration steps for a payment gateway: it tells the user to add STRIPE_SECRET_KEY and STRIPE_WEBHOOK_SECRET, install the stripe package, and shows code creating a Stripe client (new Stripe(env.STRIPE_SECRET_KEY)). That is a specific payment API integration which provides the agent with the credentials and client necessary to send transactions or otherwise execute payment operations. Because it is explicitly designed to enable a payment processor (Stripe), it meets the "Direct Financial Execution" criterion.