api-gateway

Warn

Audited by Snyk on Jul 9, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill explicitly includes integrations and example calls for payment and finance services (e.g., Stripe, Square, QuickBooks, Xero, Chargebee). It provides concrete API routes and examples (including non-GET operations) for Stripe and other billing APIs, and describes financial/billing actions as high-impact operations. Those are specific payment/billing APIs (payment gateway & accounting integrations), so the skill grants direct financial execution capability (subject to user approval hooks).

Issues (1)

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 9, 2026, 06:38 AM
Issues
1
Security Audit — snyk — api-gateway