Skills
skills/starchild-ai-agent/official-skills/abstract/Snyk

abstract

Warn

Audited by Snyk on Apr 8, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill explicitly exposes blockchain wallet and transaction execution capabilities. Specific items named: "using-agw-mcp" (AI agent wallet capabilities — "read chain data, check balances, and send transactions on behalf of users"), "safe-multisig-on-abstract" (propose and execute multi-sig transactions via Safe Protocol Kit/SafeL2), and "myriad-on-abstract" (trading/buying/selling prediction shares via the polkamarkets-js SDK). These are concrete, purpose-built interfaces/SDKs to sign and send on-chain transactions and to trade assets — i.e., explicitly move value. This meets the Core Rule for Direct Financial Execution.

Issues (1)

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 8, 2026, 01:23 PM
Issues
1