staking

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill mandates running "npx starkfi@latest" at runtime, which fetches and executes remote code from the npm registry (e.g., https://registry.npmjs.org/starkfi), so it has a required runtime external dependency that executes remote code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly exposes commands to perform on-chain crypto operations: staking, unstaking (two-step), claiming and compounding rewards, and checking tx-status. It uses a specific CLI (npx starkfi@latest) to broadcast transactions, requires an active session and sufficient token balance/gas, and references token types and validator/pool addresses. These are specific blockchain transaction actions (moving/locking tokens and signing/broadcasting transactions), which qualify as Direct Financial Execution (crypto/blockchain) under the core rule.