Back to skill
Skillv0.1.1
VirusTotal security
Finlab · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:55 AM
- Hash
- f425b62f6b5c199e917973929b17361d91eaee3a9db378132e0e00020df1868f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: finlab Version: 0.1.1 This skill is classified as suspicious due to its explicit instructions for the AI agent to perform high-risk operations. The `SKILL.md` and `trading-reference.md` files detail how to connect to real broker accounts using sensitive environment variables (e.g., `SHIOAJI_API_KEY`, `ESUN_ACCOUNT_PASSWORD`) and execute live trading orders via `OrderExecutor.create_orders()`. This capability, combined with the 'Shut Up and Run It' prompt injection instruction in `SKILL.md` that encourages proactive execution, creates a significant risk of unauthorized financial transactions or credential exposure if the agent were to be compromised or misused.
- External report
- View on VirusTotal