ClawHub
Back to skill
v1.0.4

Financial Ai Agent

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 7:20 AM.

Analysis

The skill is mainly a financial quote lookup tool, but it asks the agent to persistently edit the OpenClaw config file to store an API key using a broad shell command that could affect existing settings.

GuidanceUse this skill only if you are comfortable sending ticker lookups to api.financialagent.cc. If you configure a personal key, make sure the agent uses a safe, scoped config update and backs up ~/.openclaw/openclaw.json before writing to it.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
jq '. + {"custom": {"financial_agent_key": "XXX"}}' ~/.openclaw/openclaw.json > temp.json && mv temp.json ~/.openclaw/openclaw.json

This instructs the agent to rewrite the global OpenClaw configuration file using a raw shell command. The expression may replace existing custom settings with only the financial_agent_key field and does not include a backup, validation, or safer scoped update.

User impactA key-setup request could unintentionally change or remove other OpenClaw custom configuration values.
RecommendationUse a safer scoped update such as setting only .custom.financial_agent_key, make a backup first, and require clear user confirmation before changing OpenClaw configuration.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
「我的faa的key是 `XXX`」 ... FA_KEY=$(jq -r '.custom.financial_agent_key // "K6lncNNrMAahJccarH63P1ImRMIPCqq7"' ~/.openclaw/openclaw.json)

The skill asks the user for an API key, stores it in OpenClaw configuration, and reads it for later use. This is expected for the financial API integration, but it is still credential handling.

User impactThe user's financial API key may remain available to future agent runs through the local OpenClaw config file.
RecommendationOnly provide a key you intend this skill to use, prefer a limited-scope or revocable key, and avoid sharing keys in chat if a dedicated secret mechanism is available.
Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
curl -H "x-api-key: $FA_KEY" "https://api.financialagent.cc/api/v1/quotes/SH600519"

The configured API key is sent to the external financialagent.cc API. This is purpose-aligned for fetching market quotes, but users should be aware that their query symbols and API key go to that service.

User impactThe external API provider can receive the requested ticker symbols and the API key used for the request.
RecommendationReview the API provider before using a personal key, and avoid querying symbols if you do not want those lookups sent to the provider.