axiom-payments

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly instructs loading and executing the Apple Pay JS SDK at runtime from https://applepay.cdn-apple.com/jsapi/v1.latest/apple-pay-sdk.js (the SDK is fetched by the page, runs code in-browser, and is described as required for third‑party browser support), so this is a runtime external dependency that executes remote code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly and primarily about accepting real-world payments and payment instrument provisioning: Apple Pay (native and web), Tap to Pay (ProximityReader), merchant identity / payment processing certificates, PKCS#7 pass signing, Orders in Wallet, and issuer/bank card provisioning. These are specific payment APIs/workflows whose purpose is to process or enable payments and card provisioning (i.e., move money or authorize payments). This matches "Direct Financial Execution" (payment gateways / card acceptance / bank/issuer provisioning) rather than a generic tool, so it should be flagged.