Chaoduanxian Stock

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese educational stock-trading skill with risky speculative content, but it does not install code, access accounts, or hide extra behavior.

Install only if you want Chinese-language educational material about very short-term stock speculation. Treat it as general learning content, not personalized financial advice, and do not use it as the sole basis for real trades; novices should prefer safer general investing education or simulated practice first.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger description is broad enough to activate on generic stock, trading, and beginner-investing questions rather than a tightly scoped ultra-short-term trading use case. Overbroad routing can cause the assistant to invoke this skill in contexts where specialized, high-risk speculative trading guidance is not appropriate, increasing the chance of unsuitable financial advice being surfaced to inexperienced users.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal