webauthn-prf-wallet

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). This skill is explicitly about creating and using an Ethereum (EVM) private key derived from a passkey and exposing signing operations. It provides concrete, crypto-specific capabilities: "passkey ⇒ EVM private key" derivation, HKDF → secp256k1 key generation, constructing an ethers.Wallet, iframe RPC methods like signMessage and getERC3009Signature, and guidance for wiring signing/transaction flows. Those are direct blockchain wallet/signing functions (i.e., crypto wallet operations), which meet the "Crypto/Blockchain (Wallets, Swaps, Signing)" criterion for Direct Financial Execution.