Back to skill
Skillv1.0.4
ClawScan security
Futu-Stock · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 2, 2026, 7:13 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and behavior align with its stated purpose of talking to a local Futu OpenD via an MCP server; nothing in the bundle appears disproportionate or deceptive.
- Guidance
- This skill is coherent with its claim to act as an MCP client for Futu/OpenD. Before installing: (1) verify you trust the futu-stock-mcp-server package on PyPI (the executor may pip/pipx install it); (2) ensure OPEND_PATH points to an official FutuOpenD binary — the skill can start that executable on your machine; (3) do not enable trading-related env vars unless you intend the skill to access trading APIs (mcp-config.json defaults to FUTU_ENABLE_TRADING=0); (4) run in an isolated environment if you want to limit package installs and process execution; and (5) if you need higher assurance, review the futu-stock-mcp-server and mcp server codebases referenced in SKILL.md.
Review Dimensions
- Purpose & Capability
- okName/description (access Futu data via MCP/OpenD) match the declared binaries (python3, futu-mcp-server), required env (FUTU_HOST, FUTU_PORT), included mcp-config.json, and executor.py which bridges to a local MCP server. The assets requested are appropriate for this purpose.
- Instruction Scope
- noteSKILL.md and executor.py limit activity to checking/installing Python packages, interacting with a local MCP server (via stdio), probing the OpenD TCP port, and optionally starting a local FutuOpenD executable when OPEND_PATH is set. These are within the stated scope, but the skill can launch a local OpenD binary (via OPEND_PATH) and will inherit OS environment for subprocesses — the user should ensure OPEND_PATH points to a legitimate Futu OpenD installation.
- Install Mechanism
- noteThere is no packaged install spec; executor.py will call pip or pipx to install 'mcp' and 'futu-stock-mcp-server' if missing. Installing packages via pip/pipx is expected for this skill but does execute code downloaded from PyPI — verify the upstream package source if you need stronger guarantees.
- Credentials
- noteThe skill declares only FUTU_HOST and FUTU_PORT as required (primaryEnv FUTU_HOST), which is proportional. mcp-config.json provides additional default env entries (e.g., FUTU_ENABLE_TRADING=0). Be aware that if a user overrides env (or mcp-config.json) to enable trading, the underlying MCP server could expose trading operations — the skill could then call those tools. No unrelated third-party credentials are requested.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or system-wide agent settings. It can be invoked autonomously (standard default) but does not request permanent platform-wide privileges.