ClawHub

A股上市公司公告

v1.0.1

A tool to query Chinese listed company announcements from SZSE (Shenzhen Stock Exchange) and SSE (Shanghai Stock Exchange). Supports single/batch stock queri...

1· 266·0 current·0 all-time
byStepeno@noahstepheno
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the provided Python implementation: the plugin queries SZSE and SSE announcement endpoints, supports stock lists, keywords, and date ranges. Required files (stock_plugin.py, requirements.txt) and the API usage align with the described functionality.
Instruction Scope
SKILL.md instructs the agent to call stock_plugin.py or integrate via OpenClaw; it does not instruct reading unrelated system files, environment variables, or exfiltrating data. Example code includes an OpenClaw API key parameter, but that is a generic example for client usage and not a requirement of the skill.
Install Mechanism
No install-time downloads or extract steps are declared (instruction-only). A requirements.txt lists requests and openclaw, which is proportionate. There are no third-party URLs or archive downloads in the install process.
Credentials
The skill declares no required environment variables or credentials. The code performs only outbound HTTP(S) requests to official exchange endpoints and does not attempt to read secrets or local config.
Persistence & Privilege
always is false and the plugin registers itself only with a client-provided register_tool method (no forced global installation or modification of other skills). It does not persist or modify other agent/system configurations.
Assessment
This skill appears coherent and focused on fetching exchange announcements. Before installing, consider: 1) Network access: the plugin makes outbound requests to SZSE and SSE endpoints (note SZSE/SSE URLs used in the code and that some requests are plain HTTP), so ensure your environment permits these calls and that you trust those endpoints. 2) Rate limits and scraping policies: exchanges may throttle or block automated queries—use reasonable limits and caching. 3) No credentials are requested by the skill, so avoid supplying unrelated API keys or secrets to it. 4) If you require HTTPS-only traffic, review/modify the code to use secure endpoints where available. 5) As with any third-party code, review and run in a sandboxed environment if you have stricter security requirements.

Like a lobster shell, security has layers — review code before you run it.

latestvk9773x6k9rrba0t7r1e33yjvwh8318zp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments