ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Signalbot

v1.1.0

量化行情分析工具,对 BTC、黄金(XAUUSD)等标的计算 10 类技术指标(RSI、MACD、布林带、EMA、ATR、成交量、顾比均线、斐波那契回撤、锚定 VWAP、固定范围成交量分布),输出结构化 JSON 行情报告,可据此生成行情分析推文或做出操作建议。同时支持 1h/4h/日/周/月 多周期综合分析。

1· 130·1 current·1 all-time
by@shanhuhai5739·duplicate of @shanhuhai5739/signalbot-quant
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description match the instructions: the skill expects and runs a CLI ('signalbot') that produces JSON technical-analysis reports. The single declared install (go install github.com/shanhuhai5739/signalbot@latest) is coherent with shipping a Go CLI for this purpose, and no unrelated credentials or binaries are requested.
!
Instruction Scope
SKILL.md instructs the agent to run `which signalbot` and — if missing — to automatically execute `go install ...@latest` '无需询问用户' (install without asking). That gives the agent permission to perform a network fetch, compile and place a binary on disk and then execute it. The doc also includes cron-job examples and instructions to copy binaries into system paths (/usr/local/bin), which broaden the runtime actions to persistent system changes. The instructions do not require reading unrelated system files or credentials, but the automatic-install clause grants broad unilateral actions that users should explicitly approve.
!
Install Mechanism
Install is via `go install` of a GitHub module (github.com/shanhuhai5739/signalbot@latest) and the README also suggests direct download of GitHub Releases and copying to /usr/local/bin. Fetching and compiling third‑party source or downloading release binaries is expected for a CLI but is moderate-to-high risk: it executes upstream code locally and writes executables to disk. Using @latest (unpinned) increases risk because the exact code pulled is not fixed. The approach is traceable (GitHub) but not pre-reviewed; automatic, silent installation is the primary risk vector.
Credentials
The skill declares no required credentials and only suggests optional configuration keys (BINANCE_BASE_URL, HTTP_TIMEOUT_SEC, DEFAULT_LIMIT) for proxy/timeouts. There is no request for secrets or unrelated cloud credentials, so environment/credential requirements are proportionate to the stated purpose.
Persistence & Privilege
always:false and the skill is not requesting elevated platform privileges. However, SKILL.md encourages installing a binary into user or system PATH and provides examples that copy to /usr/local/bin and creating scheduled cron jobs via openclaw cron. While these are plausible for a monitoring/reporting tool, they imply persistent binaries and scheduled execution. The combination of automatic install + persistent cron examples increases blast radius if abused; the skill itself does not force always-on inclusion but can be made persistent by the user or by commands the agent may run.
What to consider before installing
What to consider before installing: - Review the upstream GitHub repository (https://github.com/shanhuhai5739/signalbot) and prefer a tagged/verified release rather than @latest. Look at recent commits, contributors, and issues. - Do not allow the agent to run the automatic install without review. The SKILL.md explicitly says to run `go install ...` automatically — this will fetch and compile arbitrary code from the network and place a binary on disk. - If you decide to install, run the install manually in a controlled environment first (e.g., local sandbox or VM), inspect the source or the built binary, and avoid running as root. Consider building from a specific commit tag or release and pinning the version. - Be cautious about following instructions that copy the binary into /usr/local/bin or add cron jobs; those steps require elevated permissions and create persistence. If you need scheduled runs, prefer platform-level scheduling you control or review the cron job contents before enabling. - If you need network isolation, run the binary with restricted network access or point BINANCE_BASE_URL to a trusted proxy. Prefer to provide only the minimum configuration required and avoid exposing credentials. - If you want higher assurance, ask the maintainer for signed releases, reproducible build info, or a checksum for the release binaries before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk972s8geh6hdb2hy4wz8ahzsan83f4kf

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📊 Clawdis

Install

Install signalbot via go install
Bins: signalbot

Comments