Stock Query Skill

Security checks across malware telemetry and agentic risk

Overview

This is a simple stock-price lookup skill with expected market-data network access and local CSV output, with minor dependency and file-overwrite cautions.

Install only in a Python environment you trust, run it from a directory where creating or overwriting a CSV is acceptable, and use normal stock ticker symbols. Expect it to contact external market-data services through yfinance.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal