Stock Tools

Security checks across malware telemetry and agentic risk

Overview

This skill coherently manages a local stock watchlist and fetches public A-share quotes, with a caution about an optional custom file path argument.

Install if you are comfortable with a local stock watchlist file and stock codes being sent to a public quote service. Use the default stocks-data/stocklist.txt location; avoid passing --file to important files unless you intentionally want that file treated as the watchlist.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 95% confidence
Finding: The script accepts a user-controlled --file path and resolves it to any absolute path, then uses writeFileSync and mkdirSync to create or overwrite that file. In the skill context, this exceeds the stated purpose of only maintaining a local watchlist and enables arbitrary local file modification if an agent or caller passes an attacker-chosen path.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal