Clear Street Studio Expert

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's "Non-negotiable freshness rule" requires the agent to fetch and consult the Clear Street docs at runtime (e.g., https://docs.clearstreet.io/studio/docs), so external content is retrieved during execution and directly determines the agent's instructions/answers.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about trading and includes documented, named APIs for placing and managing market orders: "Create order", "Create bulk orders", "Update order", "Delete order", "Delete all orders" and the Orders API reference and Activity WebSocket. It also covers execution strategies (SOR, DMA, VWAP, TWAP, POV, DARK), order routing, and production vs demo behavior. Those endpoints and concepts are specifically designed to submit, modify, and cancel live market transactions (i.e., move financial exposure), not just generic HTTP or browsing capabilities. Therefore it provides direct financial execution capability.