ClawHub

Quant Trading Assistant

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed A-share stock analysis helper that fetches public market data and gives informational trading signals, with no evidence of credential access, persistence, or account-changing behavior.

Install only if you are comfortable with queried stock symbols being sent to Tencent/Sina finance APIs. Verify market data and any buy/sell signals independently before trading; the built-in screener is small and simplified, and the skill does not provide regulated financial advice.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill documentation clearly describes fetching real-time stock data from Tencent/Sina APIs and market sentiment sources, which implies network access, yet no permissions are declared. Undeclared network capability is risky because it bypasses transparency and review expectations, and in a trading-oriented skill it could enable unvetted outbound requests, data exfiltration, or reliance on untrusted market data sources.

Vague Triggers

Medium
Confidence
80% confidence
Finding
The trigger scope is broad: '问股票、分析行情、选股推荐、风险提示、技术指标计算' can overlap with ordinary financial conversation and cause unintended activation. In this context, accidental invocation is more dangerous because the skill produces trading recommendations and may make network-backed analyses without the user clearly consenting to invoke a specialized finance tool.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal