vebetterdao
Warn
Audited by Snyk on May 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill is explicitly focused on blockchain token operations and transaction building: it names specific tokens (B3TR, VOT3), reward distribution patterns (smart-contract / hybrid / backend-only), claim/refund flows, and governance token actions. It explicitly directs use of @vechain/mcp-server "for on-chain data, transaction building, and live network queries" and requires using correct contract addresses and network (mainnet/testnet). Those are concrete crypto/blockchain transaction capabilities (wallet/tx building and token transfers), which match the "Crypto/Blockchain (Wallets, Swaps, Signing)" criterion for Direct Financial Execution.
Issues (1)
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata