gate-exchange-tradfi

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly requires the agent to "MUST read and strictly follow the shared runtime rules before proceeding" and points to an external runtime-rules document at https://github.com/gate/gate-skills/blob/master/skills/gate-runtime-rules.md, which is therefore a runtime-fetched dependency that directly controls agent instructions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly exposes trading (write) MCP tools for executing market actions: cex_tradfi_create_tradfi_order (place orders), cex_tradfi_update_order (amend), cex_tradfi_delete_order (cancel), cex_tradfi_update_position (modify position), and cex_tradfi_close_position (close position). It requires an API key with "Tradfi:Write" permission. These are specific, purpose-built market-order/trading APIs (not generic callers or automation), so the skill grants direct financial execution capability.