A股每日复盘模板

Security checks across malware telemetry and agentic risk

Overview

This skill is a local template generator that creates A-share market review Markdown files and shows no hidden data access or unsafe behavior.

Install this if you want a local Markdown template generator for trading reviews. Be aware that it creates files on disk and that a custom --output path may overwrite an existing file; also treat the generated content as a review framework, not financial advice or live market data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Low

Confidence: 88% confidence
Finding: The documentation states that output is saved to a default path or an arbitrary path provided via --output, but it does not clearly warn users that this causes disk writes. While this is not inherently malicious, the lack of disclosure reduces user awareness and can lead to unexpected file creation or overwriting, especially when custom paths are accepted.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal