apideck-mcp-receive-payment

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly implements a mutating workflow to record customer payments via the Apideck MCP unified accounting API. It instructs calling the apideck-receive-customer-payment workflow which fetches an invoice, builds an allocation, and calls accounting-payments-create (writes a payment). The doc emphasizes the call is non-idempotent, requires user confirmation before invoking, and references concrete accounting connectors (Xero, QuickBooks) and payment parameters. This is a purpose-built financial operation (creating payment transactions), not a generic tool, so it grants direct financial execution authority.