A-Stock Sentimental Cycle

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed A-share market sentiment analysis skill that uses market data to produce trading-reference reports, with financial-risk caveats but no code execution or account-control behavior.

Before installing, understand that this skill may produce concrete market-stage, entry/exit, and position-size suggestions based on third-party market data. Use it as a research aid only, verify the data independently, and do not treat its output as personalized financial advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly provides market-stage judgments, entry/exit timing, and position-sizing suggestions in its core behavior, but does not present a prominent upfront risk warning before those behaviors are introduced. In a financial decision-support context, users may over-rely on the output as actionable advice, increasing the chance of harmful trading decisions and liability exposure.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal