Kline Master
v1.0.0专业K线交易技能包 - 从入门到精通,包含50+形态识别、MACD/RSI/BOLL实战策略、支撑压力位分析。适合加密货币/股票/外汇交易者。
⭐ 0· 106·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description (K-line trading, indicators, pattern recognition) align with the included files (knowledge base, case studies, templates, SKILL.md). The only non-knowledge file is generate_cover.py which is for creating a listing cover image — consistent with the repository's marketing/publishing materials.
Instruction Scope
SKILL.md and TOOLS.md instruct the agent to analyze user-supplied K-line data/images and to read the bundled knowledge files (trading-strategies.md, case-studies.md) — this is expected. A noteable point: several docs (PUBLISH-GUIDE, LAUNCH-CHECKLIST, generate_cover.py) reference reading/writing paths under an absolute user home (/Users/jideaiqiang/.openclaw/...), and the Python script will write a cover.png to that path if executed. That is a leftover developer artifact and means running the script will perform local file I/O to that path; the skill's runtime instructions themselves do not require reading unrelated system files or secrets.
Install Mechanism
No install spec — instruction-only is low risk. The only executable file is generate_cover.py (pure Python, uses Pillow and system fonts). Because there is no install step, running the script would rely on local Python and installed packages; nothing is downloaded from remote URLs or extracted.
Credentials
The skill declares no required environment variables or credentials, and its functionality (trading analysis) doesn't require cloud keys. However, the publishing docs include a 'clawhub publish' command that would require ClawHub/GitHub credentials if someone executed it — these credentials are not requested by the skill but would be needed for that external action. No env vars named SECRET/TOKEN/KEY are present in the package.
Persistence & Privilege
No special persistence flags (always:false). The skill does not request system-wide configuration changes or other skills' credentials. The only write action present is the generate_cover.py saving a cover image to a path under a specific user's workspace (developer artifact).
Assessment
This package appears coherent for a trading/education skill, but review before running any code: 1) Do not blindly execute generate_cover.py — it writes to an absolute path (/Users/jideaiqiang/...) and expects Pillow and macOS fonts; either inspect and edit the output_dir to a safe location or run it in a sandbox. 2) The publish commands in docs will attempt to invoke clawhub/GitHub tools and will require your credentials if executed — do not run them unless you intend to publish and trust the target. 3) The runtime instructions read only the included knowledge files and user-supplied chart data/images (expected), but avoid giving the skill unrelated credentials or access to other local files. 4) If you plan to run any scripts from this repo, run them in an isolated environment (container/VM) and confirm no network calls or credential prompts occur. If you want higher confidence, ask the author to remove hardcoded user paths and to document any external steps that require credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk97cbb1wqdhv795m8hb2r1ravx84824c
License
MIT-0
Free to use, modify, and redistribute. No attribution required.