partnerstack

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill runs npx/npm to fetch and execute the @membranehq/cli package at runtime (e.g., "npx @membranehq/cli@latest", which pulls code from the npm registry like https://registry.npmjs.org/@membranehq/cli), so remote code is downloaded and executed and the CLI is a required runtime dependency.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). Yes. The skill explicitly exposes financial objects and operations (Transaction, Invoice, Payout) for PartnerStack and uses Membrane to run connector actions (membrane action run) against the PartnerStack API. That combination makes it specifically designed to interact with payment/payout-related endpoints (create or trigger payouts, transactions, invoices), which constitutes direct financial execution authority.