polar-sh-nextjs-convex

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). Yes. The skill is explicitly a billing/payment integration: it uses the Polar payment SDK and Next.js helpers to implement hosted checkout and a customer portal, includes a Polar client configured with POLAR_ACCESS_TOKEN, defines Checkout and CustomerPortal routes, handles payment/webhook events (onOrderCreated, onSubscriptionCreated/Updated), and shows webhook-driven sync to Convex. These are specific payment gateway actions (creating checkouts, processing orders/subscriptions, managing customer billing) — not generic tooling — so it grants Direct Financial Execution authority.