Back to plugin

Security audit

Payment

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real payment plugin whose powerful abilities match its stated purpose, but installing it means trusting bundled payment-handling code and Stripe's Link CLI.

Only install this if you intentionally want your agent to be able to initiate purchases after approval. The high-risk behavior is not hidden—it is the point of the plugin—but you should verify the package source, install Stripe Link CLI only from the official Stripe package, keep spending limits low, and pay close attention to every warning or critical approval prompt before allowing a card fill or machine payment.

VirusTotal

55/55 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.