stripe-dispute

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly built to interact with a payment gateway (Stripe). It requires a STRIPE_SECRET_KEY with disputes:write scope, includes concrete curl API calls to fetch charges/customers/invoices and to upload files to files.stripe.com, and provides a POST request that updates a dispute with evidence and "submit=true" (a final, actionable API call). These are specific, non-generic financial operations (payment gateway API usage and submitting counter-disputes), not general-purpose tooling. Therefore it grants direct authority to perform financial-related actions.