sails-local-smoke

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes an explicit command that embeds a seed phrase on the command line ("$VW wallet import --seed '//Alice' --name alice"), which instructs the agent to output/handle a secret-like value verbatim, a direct exfiltration risk pattern.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly uses a blockchain wallet CLI ("vara-wallet") and includes concrete commands to import an account from a seed and to transfer VARA tokens (e.g., $VW wallet import --seed '//Alice' --name alice and $VW --account alice transfer $PROGRAM_ID 100). Those are specific wallet/transfer operations that move on-chain value (wallet management and token transfer), which qualify as direct financial execution capability despite being framed for local dev. Therefore it meets the Crypto/Blockchain (Wallets/Transfers/Signing) criterion.