ton-cli

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires running "npx @ton/mcp@alpha" at runtime, which fetches and executes remote npm package code (remote code execution) and is therefore a required external dependency that can directly execute code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). This skill is explicitly a cryptocurrency wallet/transaction CLI for the TON blockchain. It exposes dedicated commands to send value and assets (send_ton, send_jetton, send_nft, send_raw_transaction), swap-related functionality (get_swap_quote), transaction emulation and status checks, and requires signing credentials (MNEMONIC or PRIVATE_KEY, registry wallet selectors, TonProof signing). These are specific financial execution capabilities (crypto wallet management and transaction broadcasting), not generic tooling, so it grants direct financial execution authority.