ClawHub
Back to skill

Security audit

Crypto Kline BTC加密货币K线数据

Security checks across malware telemetry and agentic risk

Overview

This skill is a small command-line tool for fetching public OKX candlestick data and shows no hidden credential access, persistence, or destructive behavior.

Install this if you are comfortable sending your requested trading pair, interval, and timestamp range to OKX, or to any proxy already configured in your environment. Review the small JavaScript file first if publisher provenance matters in your setup.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.