ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

虾皮A股选股器

v1.0.3

基于技术形态筛选A股股票池,支持VCP、RPS强势股、创新高、高股息等多种形态,并可按涨跌幅、动量、强度等维度排序。触发词:股票筛选、选股、VCP形态、RPS强势股、创新高、技术形态、形态选股、自下而上选股、涨幅最大、跌幅最大、最强股票。适用场景:技术形态选股、趋势跟踪、动量选股、价值选股、按指定维度排序筛选、多...

0· 114·0 current·0 all-time
by三水清@ksky521
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The SKILL describes an A‑share technical screener and all commands map to that purpose, but the runtime instructions require using an external CLI (npx daxiapi-cli@latest) and an API token (DAXIAPI_TOKEN or ~/.daxiapi/config.json). The registry metadata lists no required env vars or binaries, so the actual runtime requirements are not declared — an inconsistency.
Instruction Scope
The SKILL.md stays within the functional scope (fetch patterns, filter locally, sort results). It does not instruct reading arbitrary user files beyond the CLI's own config path, nor does it instruct exfiltrating data to unexpected endpoints. However, it tells the agent/user to run npx commands that will fetch and execute remote code, which expands the effective scope of what will run on the machine.
!
Install Mechanism
No install spec is declared in the registry, but the instructions rely heavily on npx daxiapi-cli@latest. npx dynamically downloads/executes a package from npm on demand; using @latest is particularly risky because it executes whatever is published at that tag. The skill effectively depends on remote code execution without declaring or pinning the package or providing a vetted install source.
!
Credentials
The skill requires an API token to function (documented in SKILL.md and token-setup references), but the registry metadata shows no required environment variables or primary credential. The token is sensitive (stored in ~/.daxiapi/config.json or DAXIAPI_TOKEN) and the docs mention VIP access — the omission in metadata is a gap. No other unrelated secrets are requested.
Persistence & Privilege
The skill does not request 'always:true', does not modify other skills, and is instruction-only. There is no indication it requests persistent elevated privileges in the agent configuration.
What to consider before installing
Before installing/using this skill: (1) Recognize that it requires an API token (DAXIAPI_TOKEN or config file) even though the registry metadata didn't declare it — treat the token as sensitive. (2) The SKILL instructs running 'npx daxiapi-cli@latest' which will download and execute code from npm at runtime; prefer to inspect the daxiapi-cli package source (or a pinned, auditable version) before running. (3) Verify the legitimacy of daxiapi.com and the daxiapi-cli package (check publisher, GitHub repo, npm package history and source) and confirm token scope/permissions. (4) If you decide to try it, avoid running npx with @latest on a production machine — run in a sandbox/container or pin a specific package version you have reviewed. (5) Ask the skill publisher to update registry metadata to declare required env vars/binaries and to provide a fixed/pinned CLI release and source link; lack of these makes the package harder to trust.

Like a lobster shell, security has layers — review code before you run it.

latestvk97at0tdm8285t3916m10gmnvx84pw2w

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments