rapyd

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill instructs runtime use of the Membrane CLI (e.g., "npx @membranehq/cli@latest" and "npm install -g @membranehq/cli@latest"), which fetches and executes code from the npm registry (e.g., https://www.npmjs.com/package/@membranehq/cli) and is a required runtime dependency—so external code is executed during operation.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an integration with Rapyd, a payment gateway, and explicitly exposes payment-related entities and operations (Payouts, Wallets, Bank Accounts, Payment Methods, Transactions, Refunds, Transfers, Payment, Subscriptions, Invoices, etc.). It uses the Membrane CLI to create connections and run actions (membrane action run) against Rapyd, which can perform payment and payout operations. Because the skill is specifically designed for financial operations and can invoke actions that move money (payments, payouts, transfers, refunds), it grants Direct Financial Execution capability.