precoro

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill requires and explicitly instructs runtime use of the Membrane CLI (e.g., "npx @membranehq/cli@latest" and "npm install -g @membranehq/cli@latest" / https://www.npmjs.com/package/@membranehq/cli), which fetches and executes remote package code at runtime and is a required dependency for the skill to operate.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill integrates with Precoro, a procurement/financial system, and explicitly exposes payment-related entities and actions (e.g., Payment, Vendor Payment, Customer Payment, Purchase Payment, Bank Account, Credit Card, Check, Deposit, Payment Method). It uses the Membrane CLI to discover and run actions on a connected Precoro account (membrane action run ...), which can include creating/executing payment-related operations. Because the integration is explicitly for procurement/finance and can run actions that move funds (vendor/customer payments, deposits, etc.), it constitutes direct financial execution capability.