chainlink-data-streams-skill

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly covers on-chain state changes and transaction submission: it instructs the agent to "trigger the approval protocol before any action that could deploy contracts, submit transactions, register/configure automation, invoke onchain writes, or otherwise change blockchain state." The Approval Protocol lists "wallet or signer required" and asks for preflight details for executing onchain actions. The Second Confirmation Rule and other guardrails further describe submitting transactions, deploying contracts/programs, funding/registering/activating onchain components. Those are explicit blockchain transaction capabilities (wallet/signer + submit transactions), which fall under the "Crypto/Blockchain (Wallets, Swaps, Signing)" category of Direct Financial Execution. Although mainnet writes are refused by default, the skill is specifically designed around performing blockchain writes when approved, so it is not a generic tool and should be flagged.