Security audit
All-Market Financial Data Hub
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed financial-data query tool that uses an Eastmoney API key and writes local Excel/Markdown results.
Install only if you are comfortable giving this skill an Eastmoney EM_API_KEY and sending your financial queries to Eastmoney's API. Treat returned market and financial data as third-party data, and avoid placing the API key in code, logs, prompts, or shared output files.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
