Skillv1.0.0

ClawScan security

Macro Analyst · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 2, 2026, 10:21 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions tell the agent to run local Python scripts and import the akshare library, but the package declares no binaries, dependencies, or code — it references files and tooling that aren't provided, which is incoherent and worth caution.
Guidance: This skill's SKILL.md expects python3.12, the akshare package, and several local scripts under paths like skills/akshare-finance/... and workspace-trading/..., but those scripts and dependencies are not included or declared. Before installing or enabling it, ask the publisher for: (1) the repository or package that contains the referenced scripts, (2) an explicit dependency list (Python version, pip packages like akshare), and (3) confirmation that running those scripts won't read or modify unrelated workspace files. If you can't get that, only run this skill in a sandboxed environment or decline it — otherwise the agent may search for and execute code from other projects on your system.

Review Dimensions

Purpose & Capability: concernThe description says this is an AKShare-based macro data/analysis skill, which reasonably requires Python and the akshare package. However the registry metadata declares no required binaries or dependencies. The SKILL.md explicitly expects python3.12 and akshare, so required tooling is missing from the manifest. The instructions also call scripts in other directories (e.g., skills/akshare-finance/scripts/..., workspace-trading/skills/trading-quant/...), which suggests cross-skill filesystem coupling not declared in the skill's purpose.
Instruction Scope: concernRuntime instructions tell the agent to execute specific local scripts and import akshare. Those scripts are not included in this skill's bundle, so following the instructions would cause the agent to search for/execute files elsewhere in the workspace. That gives the skill broad discretion to access unrelated files and code paths (and possibly sensitive local data) despite the skill not declaring such access.
Install Mechanism: noteThere is no install spec (instruction-only), so nothing will be written to disk by the skill itself. That's lower risk, but the SKILL.md expects python3.12 and the akshare Python library without declaring them or providing an install path; missing dependency declarations reduce coherence and increase operational risk if the agent attempts to run commands that aren't available.
Credentials: okThe skill requests no environment variables or credentials, which is consistent with a read-only data analysis tool. However, it will likely require network access to fetch data via akshare and may indirectly read local files (the referenced scripts), neither of which are reflected in the manifest.
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated persistence. It does not declare any self-modifying or cross-skill configuration behavior.