snapscan

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires installing/running the Membrane CLI via npm/npx (e.g., npm install -g @membranehq/cli and npx @membranehq/cli@latest), which fetches and executes remote code from the npm registry (e.g., https://registry.npmjs.org/@membranehq/cli) at runtime, so this external content is a required dependency that executes remote code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an explicit integration for SnapScan, a mobile payment gateway, and exposes domain-specific financial operations: Payment / Payment Request, Withdrawal, Transaction, Donation, Merchant accounts, etc. It instructs using the Membrane CLI to create connections and to discover and run actions (membrane action run --input ...), which would execute SnapScan actions such as creating payment requests or withdrawals. This is not a generic tool — its primary and explicit purpose is interacting with a payment system and thus can move money.