A股业绩快报查询

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed stock-finance lookup tool that sends a validated stock code to a configurable market-data API and shows no hidden persistence, credential access, file mutation, or destructive behavior.

Install only if you are comfortable sending queried stock codes to the configured market data service. Leave BASE_URL at the default unless you trust the replacement endpoint, and treat the local-author provenance as limited public assurance rather than a security guarantee.

SkillSpector

By NVIDIA

Vulnerability Patterns

Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tainted flow: 'req' from os.environ.get (line 134, credential/environment) → urllib.request.urlopen (network output)

Critical

Category: Data Flow
Content: headers={"Accept": "application/json", "User-Agent": "openclaw-skill/1.0"}, ) with urllib.request.urlopen(req, timeout=REQUEST_TIMEOUT) as resp: # HTTPError 会在 urlopen 时抛出，此处只处理读取失败 raw = resp.read().decode("utf-8")
Confidence: 93% confidence
Finding: with urllib.request.urlopen(req, timeout=REQUEST_TIMEOUT) as resp:

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal