Back to skill
Skillv2.1.0
VirusTotal security
Daily Stock Analysis v2.1 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 29, 2026, 6:41 AM
- Hash
- 943df814a18caf61a747d5b82cda663b3ff8cf68e6f4a3bde23fc4ca81d4867e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: stock-daily-analysis-v2 Version: 2.1.0 The skill bundle implements a complex stock analysis system but contains high-risk execution patterns. Specifically, `scripts/setup.sh` clones and executes code from an external GitHub repository (ZhuLinsen/daily_stock_analysis), which introduces a significant supply chain risk. Additionally, `scripts/market_data_bridge.py` utilizes `subprocess.run` to execute external Python scripts based on paths defined in the configuration, creating a potential vector for arbitrary code execution. While these features support the stated functionality, the combination of external code fetching and subprocess execution warrants a suspicious classification.
- External report
- View on VirusTotal