payment-status-sync

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly and narrowly focused on Stripe payment/subscription handling. The prompt contains direct Stripe API calls (e.g., stripe.subscriptions.retrieve, stripe.checkout.sessions.retrieve, stripe.* usage) and routes that invoke Stripe to reconcile or fetch payment status (nightly reconcile job, admin force-sync, self-serve refresh, success page calling Stripe). This is a payment-gateway integration (Stripe) — a specific financial operations tool — not a generic HTTP or browser automation example. Under the decision rules, that qualifies as direct financial execution capability (payment gateway integration).