Opensanctions Watchlist
Security checks across malware telemetry and agentic risk
Overview
The skill is advertised as an OpenSanctions/KYC watchlist tool, but its instructions also steer the agent into stock/crypto trading, broker-account, and ZVT setup workflows.
Review this skill carefully before installing. It should not be used as a compliance-only OpenSanctions tool unless the publisher removes or explains the ZVT trading content. Do not connect broker, wallet, or paid-provider credentials, and do not run generated trading/order code outside a reviewed offline backtest.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user expecting compliance screening could accidentally invoke a finance/trading assistant instead.
The same primary skill file advertises sanctions/KYC screening but then describes market selection, strategy selection, and trading execution workflows.
description: OpenSanctions 黑名单合规筛查...适用于 KYC 和 AML 尽调 ... Pipeline `data_collection -> ... -> trading_execution -> visualization` ... Target market: A-share (default), HK, or crypto?
Do not treat this as a pure OpenSanctions watchlist skill until the publisher separates or corrects the trading/ZVT content.
If connected to trading tools or broker systems, generated workflows could affect financial positions without clear containment.
The reference instructions encode order-execution behavior, but the artifacts do not clearly limit this to simulation/backtesting or require explicit approval before any high-impact trading action.
`SL-01` ... Execute sell orders before buy orders in every trading cycle ... `SL-05` ... TradingSignal MUST have EXACTLY ONE of: position_pct, order_money, order_amount
Only run generated trading code in offline/backtest mode unless you have reviewed it and explicitly approved any live broker or order action.
Providing broker or paid-provider credentials could grant the agent sensitive account access that is not clearly bounded by the skill metadata.
The skill introduces paid account and broker-provider access, while the registry declares no credential contract and the advertised purpose is sanctions screening.
Data source / provider: eastmoney (free, no account), joinquant (account+paid), baostock (free, good history), akshare, or qmt (broker)?
Do not provide broker, wallet, or paid-provider credentials unless the skill is corrected with explicit scopes, credential handling, and approval steps.
Users may install extra software that is not expected for an OpenSanctions screening skill.
The documented setup asks users to install an unpinned third-party package and initialize local directories; it is not shown as automatic execution, but it is under-declared for the advertised watchlist purpose.
`PC-01`: `python3 -c 'import zvt; print(zvt.__version__)'` → on_fail: Run: python3 -m pip install zvt then re-run: python3 -m zvt.init_dirs
Verify and pin dependencies before installation, and ask the publisher to add a proper install spec if ZVT is genuinely required.