ClawHub

INVEST 投资决策系统

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local investment tracking and decision-support skill, but users should treat its financial outputs as informational rather than personalized advice.

Install only if you are comfortable storing portfolio and trade records locally in the skill directory. Do not treat the scoring thresholds, buy/sell labels, stop-loss percentages, or position sizing as personalized financial advice, and verify any web-sourced market data before acting. Be careful pasting untrusted HTML-like text into notes or theses because report fields are rendered into local HTML.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (4)

Intent-Code Divergence

Medium
Confidence
90% confidence
Finding
The skill claims it does not provide investment advice, but its scoring thresholds and recommendation labels clearly drive buy/sell decision-making. This contradiction is dangerous because it can mislead users or policy layers into treating the skill as informational while it still produces actionable financial recommendations.

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The workflow instructs the agent to proactively perform live web searches for valuation and market metrics, but no network capability is declared. This hidden operational dependency can cause the agent to exceed expected boundaries, access unvetted external data, or fail unpredictably depending on runtime controls.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger phrases are broad and commonplace, increasing the chance of accidental activation in ordinary conversation about investing. In a skill that can create records, update holdings, and write reports, unintended activation can lead to undesired persistence or workflow execution without clear user intent.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
This file gives concrete position-sizing, stop-loss, and portfolio rebalancing rules that could directly influence real financial decisions, yet it does not present them as educational reference material or warn users that the guidance may be unsuitable for their risk tolerance, objectives, or market conditions. In the context of an investment decision skill, this is more dangerous because users are likely to treat the tables and thresholds as actionable advice rather than generic examples.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal