Back to skill
Skillv1.0.0
ClawScan security
Skills of A-share market data released by ft.tech. · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 7:25 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime instructions are consistent with its description: it only performs read-only HTTP GET requests to the documented market endpoints and does not request credentials or access local sensitive data.
- Guidance
- This skill appears to be a straightforward market-data wrapper that issues HTTP GETs to https://market.ft.tech and one endpoint at https://ftai.chat and returns JSON. Before installing, confirm you trust those domains and the skill author (source/homepage unknown). If you operate in a sensitive environment, consider running the code in a sandbox or behind network controls so you can observe outbound requests. Because the skill can be invoked autonomously by the agent (platform default), be aware it may make network calls when used by automated flows; no credentials or local files are accessed by the scripts.
Review Dimensions
- Purpose & Capability
- okThe skill name/description describe A‑share market data and the code implements exactly that: each sub-skill issues GET requests to the documented endpoints. One sub-skill intentionally uses a different host (https://ftai.chat) and the SKILL.md explicitly calls this out, so the extra domain is explained.
- Instruction Scope
- okRuntime instructions direct the agent to run run.py which subprocesses the per-subskill handler scripts. The handlers only build URLs and perform urllib HTTP GETs, parse JSON, and print results. They do not read local files, read environment variables, or transmit data to any endpoints beyond the documented domains.
- Install Mechanism
- okThere is no install spec (instruction-only), and the packaged code contains only small Python scripts. Nothing is downloaded or installed at runtime; handlers use the standard library for HTTP requests.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths and the code does not access such secrets. The requested privileges are proportional to a read-only market-data skill.
- Persistence & Privilege
- okalways is false; the skill is user‑invocable and allows autonomous invocation (disable-model-invocation: false), which is the platform default. There is no request for permanent system presence or modification of other skills/config.