Skillv1.0.0

ClawScan security

Stock Browser Fetcher · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 24, 2026, 1:21 PM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill's description claims a runnable Python fetcher that 'bypasses anti-scraping', but the package contains no code or install steps — this mismatch plus the explicit intent to evade anti-bot protections is concerning.
Guidance: This package as-published is incomplete and raises concerns: it references a Python module that does not exist in the bundle and promises to 'bypass anti-scraping' protections. Before installing or allowing an agent to use it, ask the publisher for the actual code or an install script and for details on how the browser automation works. Consider legal and terms-of-service risks of evading anti-bot measures on sites like eastmoney.com or finance.sina.com.cn. If you plan to proceed, require a code review (or run in an isolated sandbox), ensure no hidden credential prompts, and prefer implementations that use official APIs or site‑permitted scraping methods instead of evasion techniques.

Review Dimensions

Purpose & Capability: concernThe SKILL.md advertises a Python function (from skills.stock_browser_fetcher import fetch_market_data) and depends on an OpenClaw 'browser' tool, yet the registry entry contains no code files and no install spec. A user could not actually import or run the referenced module as provided. Asking to 'bypass anti-scraping mechanisms' is outside what should be achievable by a simple instruction file and suggests additional undisclosed capabilities are expected.
Instruction Scope: concernRuntime instructions are minimal and assume a local Python module exists; they do not show the concrete browser automation steps. The text explicitly states the skill will '绕过反爬机制' (bypass anti-scraping), which is scope creep: it indicates the agent should evade protections on third‑party sites. That is an operational and legal/ethical red flag even if technically related to the stated purpose of fetching market data.
Install Mechanism: noteNo install spec is provided (instruction-only), which is lower risk in terms of arbitrary downloads. However, being instruction-only also means the advertised functionality is not delivered by code in the skill bundle — this inconsistency prevents the skill from working as described without external components.
Credentials: okThe skill requests no environment variables, credentials, or config paths, which is proportionate to a read-only market data fetcher. That said, any eventual implementation that automates browsers against third‑party sites may require network access and could prompt for cookies/credentials not declared here.
Persistence & Privilege: okThe skill does not request 'always: true' or other elevated persistent privileges; autonomous invocation is allowed (platform default). No modifications to other skills or system settings are indicated.