Freqtrade Backtester

Security checks across malware telemetry and agentic risk

Overview

This is a Markdown-only Freqtrade backtesting guide with expected Docker commands and no hidden executable behavior.

Install this only if you work with Freqtrade backtesting. Review the docker-compose setup and timeranges before running commands, and avoid live exchange API keys unless they are tightly permissioned with withdrawals disabled.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: This markdown file explicitly lists trigger phrases, but several are overly broad for a skill selector, including "run backtest," "compare strategies," "is my strategy good," and "freqtrade results." These phrases can overlap with ordinary conversation or non-Freqtrade contexts, making activation boundaries unclear.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal