setup-bcl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent (in SKILL.md and references/bcl-docs.md) to consult and use live third‑party documentation at https://docs.bcl.my/ (and linked PDFs) when local references are incomplete, so the agent will fetch and act on public web content that can change its decisions and actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about a payment gateway (BCL Pay) and related payment operations: setup and integration of payment links, QR terminals, forms, portal keys, transactions, webhooks, and direct debit. It references Bayarcash (a payment API), portal keys, transaction/webhook handling, and verification/idempotency before fulfilment — all specific financial execution functionality. This matches "Payment Gateways" / banking/payment API functionality and thus grants direct financial execution capability.