mutation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill explicitly asks about tenant identifiers and access tokens and includes examples (curl headers and client config) that place secrets directly into commands/code, which encourages the LLM to accept and embed secret values verbatim.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is a commerce-specific mutation API for Crystallize that explicitly supports order creation and payment operations: it lists "create orders (POS, imports)", "convert cart to order", and direct payment mutations such as "record payments", "add/update payments" (addPayments / setPayments) via the Shop API /order endpoints. These are explicit write operations to create/record payments and orders within the platform (i.e., direct financial execution capabilities within an e‑commerce context), not a generic tool. Therefore it meets the criteria for direct financial execution authority.