wechatpay-deduction-service

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly instructs the agent to use WebFetch at runtime to open official API documentation URLs (e.g. https://pay.weixin.qq.com/doc/v2/merchant/4011986709.md) and to "逐字段构造业务代码" from that fetched content, so external content fetched at runtime directly controls the agent's generated instructions/code.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a WeChat Pay delegated-deduction integration: it documents signing/keys, V2/V3 API usage, and concrete payment operations such as "申请扣款" (apply for deduction), "预扣费通知", "退款", "查询", and full funds reconciliation. This is a payment-gateway–specific skill (WeChat Pay) whose primary, explicit purpose is to integrate and invoke financial transaction APIs — i.e., move money. Therefore it meets the Direct Financial Execution criterion.