Market Data Hub
Security checks across malware telemetry and agentic risk
Overview
This appears to be a coherent stock-market data skill; the main things to notice are its disclosed third-party data-provider calls and unpinned Python dependencies.
This skill looks purpose-aligned for retrieving stock data and calculating indicators. Before installing, use a virtual environment, review or pin the Python dependencies if you need reproducibility, and remember that market-data queries may be sent to Tencent, AKShare, or Baostock.
VirusTotal
63/63 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the skill may fetch newer third-party package versions over time, which can affect reproducibility and supply-chain review.
The skill uses a normal user-directed Python dependency install, but the dependencies are not pinned to exact versions, so future installs may resolve to different package versions.
pip install -r requirements.txt ... `akshare>=1.10.0` ... `baostock>=0.8.8` ... `pandas>=1.5.0` ... `requests>=2.28.0`
Install in a virtual environment and consider pinning or reviewing dependency versions if reproducible or higher-assurance use is important.
Stock symbols, dates, and similar query parameters may be sent to the listed data providers when the skill is used.
The skill openly relies on external market-data providers. This is purpose-aligned, but it means market-data requests leave the local environment.
- 腾讯财经:实时行情,速度快 - AKShare:A股完整数据,功能全面 - Baostock:高质量历史数据,复权因子
Use it with awareness of the third-party data sources and avoid submitting queries you consider private.