Investment Data 1.0.0
Security checks across malware telemetry and agentic risk
Overview
The skill is presented as reliable A-share market data, but the included query code generates random prices and the downloader extracts a remote archive without safety checks.
Review carefully before installing. Do not rely on the current query output for real financial decisions, because the included client generates sample/random data. If you use the downloader, prefer a pinned and verified release, and only enable cron updates or provider tokens if you understand the storage, network, and credential implications.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could return made-up prices as real market data, which could mislead analysis or investment decisions.
The advertised stock-data query path does not read the downloaded dataset and instead generates random sample prices while the skill is described as high-quality investment data.
# TODO: 实现从 Qlib 二进制文件读取数据 # 这里先返回示例数据 ... 'open': np.random.uniform(10, 20, n) ... 'close': np.random.uniform(12, 22, n)
Do not use query results for real investment decisions until the code reads verified datasets; demo data should be clearly labeled and real queries should fail closed when data is unavailable.
A compromised or malicious archive could poison the dataset or write files outside the intended data directory.
A remote GitHub release archive is downloaded and extracted directly without checksum/signature verification or safe tar member path validation.
download_url = f"https://github.com/chenditc/investment_data/releases/download/{version}/{tar_filename}" ... tar.extractall(path=output_dir)Pin trusted versions, verify checksums or signatures, and validate tar members before extraction, rejecting absolute paths, parent-directory traversal, and unsafe symlinks.
If enabled, the skill may run recurring network downloads and consume local storage on a schedule.
The documentation describes a recurring scheduled update. This appears user-directed and is not installed automatically by the provided artifacts.
使用 OpenClaw cron 自动更新 ... cron: "0 9 * * *" ... task: "python scripts/update_data.py --daily"
Enable scheduled updates only deliberately, confirm the command exists and is safe, and monitor storage/network usage.
If set, the token may allow access to the user's Tushare account or quota.
The skill asks users to optionally provide a provider API token for real-time updates; this is purpose-aligned and no misuse is shown in the included code.
# Tushare Token(可选,用于实时更新) export TUSHARE_TOKEN=your_token_here
Only set the token if needed, keep it out of chat/logs, and prefer a least-privilege or revocable token.