Back to skill
Skillv1.0.9
VirusTotal security
Tushare Pro · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:20 AM
- Hash
- eb5138560ac7a43fc78bb6089822ba224637b7504e483fdd2572a74095de785b
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: tushare Version: 1.0.9 The skill bundle provides a legitimate interface for the Tushare financial data API. The Python script (scripts/market.py) acts as a wrapper for the 'tushare' library, requiring a user-provided API token (TUSHARE_TOKEN) to fetch stock, futures, and macroeconomic data. No evidence of data exfiltration, malicious execution, or prompt injection was found; the referral link in SKILL.md is a standard practice for this service and does not pose a security risk.
- External report
- View on VirusTotal