Skillv1.1.0

ClawScan security

Google Finance Stock Tracker · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 7, 2026, 8:52 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and runtime instructions are consistent with its stated purpose (tracking stocks via Google Finance), it only requires python3, stores state locally, and makes HTTP requests to the documented public endpoints — no unrelated credentials or surprising installs are requested.
Guidance: This skill appears to do what it says: it scrapes Google Finance (with documented fallbacks), computes heuristic buy/hold/sell signals, and stores a local watchlist file at ~/.openclaw/workspace/stock-tracker-state.json. Before installing: (1) inspect the bundled scripts yourself to confirm you accept the scraping behavior and parsing heuristics; (2) be aware that scheduling cron jobs via the provided openclaw cron examples can cause unattended runs and (depending on your OpenClaw configuration) can post results to channels like Slack — verify the target channel and platform permissions first; (3) the script performs scraping (fragile and subject to site rate limits/blocking), so monitor for failures or excessive requests; and (4) set appropriate file permissions on the state file if you are concerned about local access. If you want extra assurance, run the script manually first and review network traffic before enabling automated cron runs.

Review Dimensions

Purpose & Capability: okName/description match the implementation: the included Python script implements fetching/parsing Google Finance pages, computing scores, and persisting a local watchlist. Required binary is python3 (appropriate). No unrelated environment variables, binaries, or platform-level access are requested.
Instruction Scope: noteSKILL.md instructs running the bundled parse-stock.py and persisting state at ~/.openclaw/workspace/stock-tracker-state.json only. It documents network access to Google Finance and fallback sources (Yahoo, Stooq, Google News) which align with the purpose. Note: the cron examples use the OpenClaw 'openclaw cron add' command and show posting to a channel (e.g., Slack) — scheduling/posting behavior depends on OpenClaw platform configuration and chosen channel IDs; review those options before enabling unattended reports.
Install Mechanism: okInstruction-only skill with a bundled Python script; there is no installer that downloads or executes remote archives. This is a low-risk install model (script is included in the package).
Credentials: okNo environment variables or credentials are required or declared. The script's security manifest and code indicate it does not read environment secrets and only writes/reads the declared local state file. Outbound network calls are limited to the documented public endpoints.
Persistence & Privilege: okThe skill does not request always:true and will not force inclusion. It persists a small local state file under the user's home (~/.openclaw/workspace/stock-tracker-state.json), which is appropriate for a watchlist. Autonomous invocation is allowed by default (platform normal); cron scheduling is optional and controlled by the user.