科技投资日报

The skill is classified as suspicious due to critical prompt injection vulnerabilities in `SKILL.md`. The AI agent is instructed to execute shell commands (`python3` and `bash`) where arguments (such as stock codes for `scripts/report.py` and file paths for the `md2pdf-weasyprint` script) are constructed by the agent. If an attacker can craft a prompt that causes the agent to include shell metacharacters (e.g., `;`, `$()`) in these arguments, it could lead to arbitrary command execution (shell injection).