gate-exchange-assets-manager

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's setup.sh is intended to be run at runtime and uses curl to fetch and install a remote gate-cli binary from GitHub (e.g. https://api.github.com/repos/gate/gate-cli/releases/latest and https://github.com/gate/gate-cli/releases/download//gate-cli__... .tar.gz), which downloads and executes remote code as a required dependency.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a crypto exchange account and asset manager with built-in write operations for borrowing and changing account settings. It defines and permits specific execution commands such as gate-cli cex unified loan create (borrow/repay), gate-cli cex unified config collateral (set collateral), gate-cli cex unified mode set (switch unified account mode), and gate-cli cex unified config leverage-set (set leverage). The routing and safety rules show a full read+write flow (S5) including Action Drafts, mandatory explicit user confirmations, and post-confirmation execution. Because these are purpose-built exchange operations that can move or change financial positions (not generic tools), the skill grants direct financial execution capability.