Sina Stock
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a straightforward stock-quote lookup tool that sends requested A-share codes to Sina Finance and prints the returned data.
Install if you are comfortable with the stock codes you query being sent to Sina Finance. Avoid entering account identifiers, private notes, or unrelated sensitive data as stock codes; the reviewed artifacts do not show local persistence or credential use.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.