ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Stocktoday Skill 1.0.1

v1.0.5

Provides access to 155+ Tushare API endpoints for stock basics, real-time quotes, financials, funds, futures, options, and special market data via MCP server.

0· 270·0 current·1 all-time
bywglink@usa2046
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (Tushare-style MCP server) matches the included code and tools list: the JS/TS files implement an MCP server that posts requests to an upstream API. However the published registry metadata declared no required environment variables while SKILL.md and source require a token (STOCKTODAY_TOKEN or TUSHARE_TOKEN). That mismatch is an incoherence the user should notice.
Instruction Scope
SKILL.md instructs supplying STOCKTODAY_TOKEN (or TUSHARE_TOKEN) and shows tool-use examples; runtime instructions are limited to calling the upstream API and returning results. It does not instruct reading unrelated local files. However the default BASE_URL used by the code is a third‑party domain (https://tushare.citydata.club/) rather than the official tushare host; the instructions/readme even present a default token ("citydata"). Calls will POST the token + user parameters to that external host, which is expected for this skill but raises privacy/trust concerns.
Install Mechanism
There is no high-risk remote installer: package.json and package-lock.json indicate standard npm dependencies (modelcontextprotocol sdk, axios, etc.) from public registries. The skill includes source and build steps in README (npm install / build). No arbitrary download URLs or extract steps were found in the manifest.
!
Credentials
The skill requires an API token in practice (STOCKTODAY_TOKEN or TUSHARE_TOKEN in code and SKILL.md) but the registry metadata lists none — this omission is inconsistent. The code accepts a configurable STOCKTODAY_URL/BASE_URL and defaults to a non‑official third‑party domain; that means the provided token and any query parameters will be sent to that external service. Requiring one token for an upstream data API is proportional, but you should verify exactly which service you are giving the token to (official Tushare vs. a mirror) before installing/using.
Persistence & Privilege
The skill does not request 'always: true' and does not claim system-level privileges. It can be invoked autonomously by the agent (default), which is normal for skills; combined with external network calls and an API token this increases the impact if misused, so verify trust in the external endpoint and token before allowing autonomous use.
What to consider before installing
This skill appears to implement an MCP proxy for many Tushare endpoints and will POST your token and query parameters to an upstream URL. Before installing: (1) confirm you trust the upstream server (default https://tushare.citydata.club/) — it is not the official tushare.pro host; (2) provide only a token intended for that service (don’t reuse sensitive credentials); (3) note registry metadata omitted the required env var — ensure you set STOCKTODAY_TOKEN or TUSHARE_TOKEN as needed; (4) if you need stronger assurance, inspect the code locally or run the server in an isolated environment, or change STOCKTODAY_URL to an endpoint you control/verify. If you allow the agent to call this skill autonomously, remember it may send queries (and the token) to the external host without additional prompts.
dist/index.js:6
Environment variable access combined with network send.
generate_mcp.py:37
Environment variable access combined with network send.
src/index.ts:5
Environment variable access combined with network send.
test_all.js:69
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk975ww44n307x1tnre8cxg4nah84eqdj

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments