Financial data fetcher
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent could remove or alter custom sector/watchlist information if the user asks for or approves the wrong command.
The skill documents commands that delete a custom sector or clear its constituents, which changes user data in the TongdaXin client rather than only fetching data.
/delete_sector --block_code TEST ... /clear_sector --block_code TEST
Confirm the exact sector code before running create, delete, rename, clear, subscribe, or refresh commands, and avoid letting the agent infer destructive actions.
The skill may interact with the user’s local financial terminal session, including client data such as custom sectors and subscriptions.
The skill operates through the local TongdaXin financial terminal and its TQ strategy interface, so it may act with whatever local client access is available.
需要安装 通达信金融终端TQ版 并确保其正常运行 ... 本工具依赖 TQ 策略接口与通达信客户端进行数据交互
Use it only in a TongdaXin environment you trust, and be careful if the client is logged into a trading account or contains sensitive portfolio/watchlist data.
Users have less provenance information for verifying who maintains the skill and how dependencies should be installed.
The registry metadata does not provide a source repository or homepage, and setup is documented manually rather than through an install spec.
Source: unknown; Homepage: none; No install spec — this is an instruction-only skill.
Review the included scripts and install dependencies from trusted sources; prefer a pinned, reproducible environment if using this for financial workflows.
A monitoring script based on the example may continue consuming data and sending alerts until the user stops it and unsubscribes.
A reference example shows a long-running market-monitoring subscription loop, with Ctrl+C cleanup; this is disclosed and purpose-aligned but can keep operating until stopped.
while not EXIT_FLAG:\n time.sleep(0.1)
Run subscription monitors only intentionally, keep a visible terminal/session, and verify unsubscribe or cleanup succeeds when finished.