Skills of A-share futures data released by ft.tech.
Security checks across malware telemetry and agentic risk
Overview
This skill appears limited to running bundled Python scripts that fetch public futures market data from market.ft.tech.
Install only if you are comfortable with the agent running the bundled Python entrypoint and making HTTPS requests to market.ft.tech for market data. The skill does not appear to require credentials or modify local files or accounts.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.