cashfree

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill requires fetching and running the Membrane CLI at runtime via npm/npx (e.g., @membranehq/cli — https://www.npmjs.com/package/@membranehq/cli), which executes remote code and is a required dependency for the skill.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an integration for Cashfree, a payments platform, and explicitly references payments, refunds, bank transfers, and payouts. It provides connectors and Membrane actions that can be created and run (membrane action run --input '{"..."}'), which are explicitly intended to interact with payment gateway operations. Because the primary and explicit purpose of the skill is moving money (collecting payments, making payouts, issuing refunds), it grants direct financial execution capability.