bison-strategy

Warn

Audited by Snyk on May 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill is explicitly a trading strategy that interfaces with a runtime to open and manage leveraged positions. It names and describes order-level actions and APIs (e.g., the runtime's LLM-gated bison_entry action that opens via FEE_OPTIMIZED_LIMIT, passing marginUsd and leverage; producer create_position / push_signal integration; explicit references to create_position, close_position, cancel_order, ratchet_stop_* and strategy_close_positions). It therefore directly specifies market-order execution, position creation/closure, margin and leverage sizing — concrete financial execution functionality rather than a generic tool.

Issues (1)

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 18, 2026, 05:06 PM
Issues
1
Security Audit — snyk — bison-strategy