ClawHub
Back to skill
v1.0.1

uwillberich

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:50 AM.

Analysis

The artifacts are coherent for a market-analysis skill, but users should knowingly approve the API key setup, external data calls, and optional background news watcher.

GuidanceThis appears safe to install if you want its A-share market workflow, but review the README carefully: set up a dedicated EM_API_KEY, inspect any one-line installer before running it, and only enable the launchd/nohup news iterator if you intentionally want background polling.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Rogue Agents
SeverityLowConfidenceHighStatusNote
references/message-iterator.md
nohup python3 scripts/news_iterator.py loop --interval-seconds 300 ... & ... python3 scripts/install_news_iterator_launchd.py install --interval-seconds 300

The skill documents a long-running news polling mode and a launchd installation path. This is disclosed and aligned with the 'persistent news intake' feature, but it can continue operating after the immediate user request.

User impactIf enabled, the skill can keep polling public news feeds in the background and updating local watchlist artifacts.
RecommendationOnly install or start the background iterator if you want ongoing polling, and confirm how to stop or remove the launchd job before enabling it.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceMediumStatusNote
README.md
git clone https://github.com/huangrichao2020/uwillberich.git && cd uwillberich && ./install_skill.sh

The README recommends a one-line installer script from a cloned repository, while the provided manifest does not list install_skill.sh. This is a user-directed install path, but it should be inspected before use.

User impactA user following the one-line install could execute installer code that is not represented in the supplied manifest.
RecommendationPrefer the documented manual copy install path, or inspect the repository and installer script before running the one-line command.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
README.md
This skill hard-requires `EM_API_KEY`... Store it locally in `~/.uwillberich/runtime.env`.

The skill needs a local Eastmoney/MX API key for its market-data workflows. That is expected for the stated purpose, but users should notice it because the registry requirements list no required env vars or primary credential.

User impactThe skill may read and use a locally stored market-data API key when running its scripts.
RecommendationUse a dedicated key if possible, store it with normal local-file protections, and do not share logs or files that might include credential setup details.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
references/message-iterator.md
It continuously polls public RSS feeds, scores headlines, and stores high-signal alerts into a local SQLite database. It also converts those alerts into event-driven stock pools automatically

External news headlines are persisted and later reused to influence generated watchlists and reports. This is core to the feature, but retrieved public content can be wrong or misleading.

User impactFuture market notes may be shaped by previously stored RSS items and automatically generated event watchlists.
RecommendationTreat generated event watchlists as prompts for review, verify important news with primary sources, and periodically clear or review the local iterator state if outputs seem stale.