A Stock N Pattern
Security checks across malware telemetry and agentic risk
Overview
The skill clearly discloses a paid stock-signal API, but the included code does not substantiate its advertised real-time market screening and instead returns fixed stock recommendations.
Install only if you are comfortable with a 0.01 USDC paid call to the disclosed wallet and with relying on an external service for stock picks. Treat the recommendations as unverified financial information, because the submitted code returns fixed examples rather than demonstrating real-time market-data screening.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.