Security audit

金融日报推送技能

Security checks across malware telemetry and agentic risk

Overview

This finance-report skill mostly does what it says, but it ships and automatically uses a bundled TuShare API token if the user has not provided their own.

Install only after reviewing or removing the bundled TuShare token. Prefer setting your own TUSHARE_TOKEN, rotating any exposed token if you own it, installing dependencies from trusted sources, and creating only the cron schedules you actually want to run automatically.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

High

Confidence: 99% confidence
Finding: The script contains a hardcoded TuShare API token fallback, which exposes a live credential in source code and allows anyone with code access to reuse or abuse the account. In a skill context, this is more dangerous because the file may be distributed, logged, or inspected by downstream users or agents, turning the embedded secret into a broadly exposed credential.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal