ClawHub
Back to skill
v1.0.0

Indian Stock Monitor Clawhub

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 1:22 PM.

Analysis

The stock-monitoring purpose is coherent, but the skill requests an overbroad workspace shell tool and stores sensitive portfolio data with persistent scheduled runs, so it deserves careful review before installation.

GuidanceBefore installing, decide whether you are comfortable storing your holdings in the skill directory and allowing a recurring stock-monitoring task. The main issue to review is the manifest's workspace bash capability, which is broader than this skill appears to need.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
manifest.json
"requires": { "tools": [ "WebSearch", "Read", "Write", "Edit", "AskUserQuestion", "mcp__scheduled-tasks__create_scheduled_task", "mcp__workspace__bash" ] }

The stated stock-monitoring workflow needs web research and local file updates, but a raw workspace shell tool is broader than necessary and the artifacts do not define safe command limits.

User impactIf granted, the agent may have general command-execution capability in the workspace, which is more powerful than expected for a portfolio alert skill.
RecommendationRemove the bash tool unless it is truly needed, or narrowly scope it and require explicit user approval for any command execution.
Rogue Agents
SeverityLowConfidenceHighStatusNote
SKILL.md
If the user agrees, use `mcp__scheduled-tasks__create_scheduled_task` with cron `30 8 * * 1-5`

The skill can create a recurring weekday scheduled task, so it may continue running after initial setup.

User impactThe monitor can keep scanning on weekdays until the scheduled task is disabled.
RecommendationApprove the schedule only if you want recurring monitoring, and make sure you know how to view or remove the scheduled task.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityMediumConfidenceHighStatusNote
SKILL.md
`portfolio.json` — user's holdings, watchlist, preferences ... `state/portfolio-backup-{TS}.json` — automatic backups before every portfolio write

The skill intentionally stores the user's holdings and preferences, including automatic backup copies, as persistent local state.

User impactYour stock holdings, preferences, and prior portfolio versions may remain in the skill directory and could be seen by anyone with access to that workspace.
RecommendationUse this only in a protected workspace, avoid sharing screenshots with account identifiers, and periodically delete old backups if you no longer need them.