medusa-orders

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an order-management module for Medusa v2 that explicitly references payment lifecycle actions (payment captured, captured/authorized statuses), workflows tied to payment operations (e.g., completeOrderWorkflow after payment capture, payment adjustment during order edits), and return/exchange flows that result in refunds. It also links the Order Module to a Payment Module and documents admin routes (e.g., creating returns) that can trigger monetary operations. These are specific, workflow-level functions to capture/pay/refund money rather than generic tooling, so it provides direct financial execution capability.