ClawHub
Back to skill

Security audit

Market Analyst

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed market-analysis assistant that runs local Python scanners and queries market-data services, but it does not show credential theft, hidden persistence, account access, or trading actions.

Install only if you are comfortable with the agent running bundled Python scripts and sending requested tickers or portfolio symbols to external market-data services. Treat all recommendations as educational research, verify current prices and macro assumptions, and do not rely on it as personalized financial advice.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (6)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill explicitly instructs the agent to perform unauthenticated network access to TradingView scanner endpoints and to run local scripts that fetch real-time market data, yet no permissions are declared. That creates a policy and transparency gap: the agent may make external requests users or the host system did not authorize, exposing prompts, usage metadata, or triggering unintended outbound access.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The file gives direct buy/sell instructions such as 'Strong buy', 'BÁN', and DCA adjustment rules without any visible risk disclosure, suitability caveat, or financial-advice warning. In the context of an investment-analysis skill, this increases the chance that users treat heuristic indicators as personalized financial advice and make consequential real-money decisions based on oversimplified triggers.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
This section gives concrete investment recommendations, portfolio allocation percentages, and DCA advice without any user-facing warning about financial risk, suitability, or the non-personalized nature of the content. In a skill explicitly designed for investment analysis and portfolio optimization, users may reasonably treat this as actionable financial advice, increasing the chance of harmful decisions or regulatory/compliance exposure.

Missing User Warnings

Low
Confidence
90% confidence
Finding
This file provides concrete return projections, scenario modeling, and benchmark comparisons in an investment-advisory skill, while placing the risk disclaimer only at the end. In this context, users may treat the estimates as actionable financial guidance without seeing material caveats first, increasing the chance of overreliance on speculative forecasts and unsuitable investment decisions.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
This section gives direct investment recommendations such as sector rankings, buy/avoid guidance, and timing strategies without any visible disclaimer that the material is informational only and not personalized financial advice. In a skill explicitly designed to guide asset purchases and portfolio decisions, users may reasonably treat these statements as actionable advice and suffer financial loss if the analysis is wrong, outdated, or inapplicable to their risk profile.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The code transmits the user's portfolio symbols to TradingView's scanner API, which reveals sensitive investment holdings and interests to a third party. In an investment-advisory skill, holdings data can be financially sensitive, and the lack of any explicit notice or consent mechanism increases privacy risk even though no credentials or direct code execution are involved.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal