raptor-dex

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The deployment docs show fetching and executing remote binaries (git clone https://github.com/solanatracker/raptor-binary and curl -L https://github.com/solanatracker/raptor/releases/latest/download/raptor-linux-amd64 -o raptor) which download code that is then executed locally and are required (including the signature file), so these URLs enable remote code execution at runtime.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a Solana DEX aggregator that builds swap transactions, provides endpoints to create swap transactions (/swap, /quote-and-swap, /stream/swap), and to submit signed transactions (/send-transaction). The docs describe building unsigned transactions, signing locally with a private key, and submitting the signed transaction to the network (via Yellowstone Jet TPU). This is a specific crypto/blockchain execution capability (wallet signing + submitting on-chain swap transactions) intended to move funds on-chain—i.e., direct financial execution.