web3-audit

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is a specialized WEB3 smart-contract audit workflow that includes a Foundry exploit PoC template and explicit Foundry cheatcodes (vm.createSelectFork, vm.prank / startPrank, deal(token, address, amount), token.transfer calls, interacting with TARGET_ADDRESS). The PoC and cheatcodes are explicitly designed to construct and execute on-chain transactions (including ERC20 transfers and balance manipulation) to demonstrate draining/moving funds on a fork. This is a specific crypto/blockchain execution capability (sending transactions and manipulating token balances), not a generic tool, so it constitutes Direct Financial Execution authority.