Wealth
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent instruction-only financial planning skill with no code, credentials, or hidden data flows, but users should handle its financial advice and requested financial details carefully.
This skill appears safe to install as an instruction-only financial planning guide. Treat its output as educational support, not personalized professional advice, and avoid sharing unnecessary sensitive identifiers or account details.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user might make investment, tax, or retirement choices based on confident-sounding guidance that may not fit their exact situation.
The skill gives confident financial recommendations in a high-stakes domain. This is aligned with the skill's purpose, but users could over-trust generalized advice if they do not verify assumptions, laws, limits, and personal circumstances.
Agent: The order of operations for your situation is clear... max your HSA... max a Roth IRA...
Use the skill for education and planning, ask it to state assumptions and alternatives, verify current rules and contribution limits, and consult a qualified fiduciary, CPA, or attorney before major financial, tax, or estate decisions.
Sensitive financial details shared in chat may remain in the conversation context or platform records depending on the host environment.
The recurring review prompts encourage users to place sensitive personal financial details into the agent context. No storage, credential access, or external transmission is shown, so this is a privacy/context note rather than a concern.
"Here is my financial snapshot for the month: income [amount], spending [amount], invested [amount], net worth approximately [amount]. Am I on track?"
Share only the level of detail needed, avoid account numbers, tax IDs, login details, or exact institution identifiers, and prefer approximate figures when exact amounts are unnecessary.