ClawHub

Pilot Financial Trading Desk Setup

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent trading-desk setup, but it can enable real trade execution without clear sandbox, approval, or loss-prevention warnings.

Review carefully before installing. Use only paper-trading or sandbox exchange credentials until you have verified every downstream pilot skill, especially pilot-webhook-bridge. Do not connect production exchange keys unless you have explicit position limits, human approval gates, audit logging, and a way to disable execution quickly.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README explicitly describes a trade execution agent that interfaces with exchange APIs, but it provides no warning that this setup may place live orders with real financial consequences. In the context of an automated trading desk, omission of a clear safety notice materially increases the risk that users will connect production credentials or test commands against live infrastructure and cause unintended trades or losses.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The example commands show publishing approved trades and execution reports into the workflow without any warning that downstream components may automatically place or acknowledge irreversible market orders. Because this skill is specifically for coordinated trading automation, users may reasonably copy-paste these examples into a live environment, leading to unintended order placement, loss of funds, or audit/compliance issues.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly wires an executor role to `pilot-webhook-bridge` for exchange API order placement and defines message flows for `approved-trade` and `execution-report`, but it does not warn users that following this setup can enable live trading actions and external publication of sensitive trade activity. In a financial trading context, omission of this warning materially increases the chance of unintended real-money execution, regulatory exposure, and operational misuse.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal