Stock Expert

The skill is highly suspicious due to critical shell injection vulnerabilities present in `SKILL.md`. All three tools (`get_my_portfolio`, `get_stock_price`, `execute_order`) construct shell commands by directly interpolating environment variables (`{{KIS_TRADE_SCRIPT_PATH}}`) and user-provided arguments (`{{symbol}}`, `{{qty}}`, `{{price}}`, `{{side}}`) without any sanitization or escaping. This allows an attacker to inject arbitrary shell commands, leading to potential Remote Code Execution (RCE) on the host system. While the instructions for the AI agent are security-conscious regarding user confirmation for trades, the underlying command execution mechanism is severely flawed.