Daily Review Assistant
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a straightforward stock-report helper, but it relies on a local Python script that is not included here and can optionally use SMTP credentials to send email.
Before installing, make sure the workspace contains the intended stock-analysis/daily_review.py script, trust its source and dependencies such as AkShare, and only configure SMTP_PASSWORD/email_config.json if you want the assistant to send reports by email.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The installed skill may run a workspace script whose contents are outside these reviewed artifacts.
The skill describes running stock-analysis/daily_review.py, but that implementation file is not included in the reviewed package.
2 file(s): SKILL.md (1889 bytes); skill.json (342 bytes)
Review or obtain the referenced daily_review.py script from a trusted source before using the skill, and consider pinning or documenting dependencies.
Running the skill executes the referenced Python script in the current workspace.
The skill is a shell wrapper that runs a Python file in the workspace. This is central to the stated purpose, but it is still local code execution when invoked.
"entry": { "kind": "shell", "command": "python3 stock-analysis/daily_review.py" }Use it only in a workspace where stock-analysis/daily_review.py is expected and trusted.
If --email is used, the skill can authenticate to the configured SMTP account and send the generated report.
The optional email mode uses an SMTP password or authorization code from the environment, granting access to send mail through the configured account.
SMTP 密码(授权码)从环境变量读取:- 默认:`SMTP_PASSWORD`
Set SMTP_PASSWORD only when you intend to send email, prefer an app-specific authorization code, and verify email_config.json recipients before use.