ClawHub

joinquant聚宽平台的策略助手,DR成熟框架

Security checks across malware telemetry and agentic risk

Overview

This is a coherent JoinQuant strategy helper, but it includes copy-pastable code that can place trades or liquidate holdings without clear live-account safeguards.

Install only if you understand that the examples may generate real orders when adapted or run in a live JoinQuant environment. Treat all order, order_target, order_value, cancellation, and portfolio-liquidation snippets as live-risk code; backtest or paper trade first and add account-mode checks, position limits, and explicit confirmation gates before live deployment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The README explicitly advertises order placement and cancellation functionality but does not warn that these actions may execute against live brokerage or simulated accounts with financial consequences. In a trading-assistant skill, omission of safety boundaries can lead users or downstream agents to invoke trading actions without distinguishing between backtesting, paper trading, and real-fund execution.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This documentation describes callable order-placement APIs and provides copy-pastable examples that submit buys, sells, portfolio rebalancing, batch trading, and cancellations, but it does not clearly warn that these actions may execute real trades and affect live funds or positions. In an agent skill context, users or downstream agents may treat examples as safe demonstrations and invoke them directly, increasing the risk of unintended financial transactions.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documentation includes direct examples for liquidation actions such as setting target holdings or target value to zero, but it provides no warning that these snippets can fully exit positions and cause real financial consequences if copied into a live trading environment. In a trading skill, omission of user-facing safety guidance materially increases the chance of accidental destructive actions, even if the examples are educational.

Missing User Warnings

High
Confidence
97% confidence
Finding
The batch sell example iterates over all current positions and issues orders to reduce every holding to zero, which amounts to full portfolio liquidation. Without a prominent warning, confirmation step, or scope limitation, a user could reuse this example in production and unintentionally sell all assets, making this especially dangerous in the context of live brokerage automation.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The markdown documents code that can automatically issue sell orders and fully exit positions via `order_target(stock, 0)` without any accompanying warning that these actions may liquidate live holdings. In a trading-skill context, omission of such warnings increases the chance that a user copies the snippet into a live strategy and triggers unintended losses, forced exits, or operational disruption.

Missing User Warnings

High
Confidence
98% confidence
Finding
This section explicitly describes portfolio-wide liquidation when market drawdown thresholds are met, iterating through all positions and selling each one. In a live brokerage or quant platform, that is a destructive action with immediate financial consequences, and presenting it without a prominent warning or safety controls materially raises the risk of accidental mass liquidation.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The template places trades automatically based on strategy conditions and does so without any explicit user confirmation, safety interlock, dry-run mode, or prominent warning that live orders may be sent. In an automated trading context, this is dangerous because a user may deploy or adapt the template without realizing it can immediately allocate available cash and submit market actions, leading to unintended financial loss.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal