ClawHub

🔥 DeepStock - A股量化投研助手 | 免费提供K线数据 · 技术指标 · 股东人数 · 官方公告解析

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only stock research skill whose external API use and PDF download behavior are disclosed and aligned with announcement analysis.

Before installing, note that the skill calls an unauthenticated HTTP API and announcement searches may create stored PDF files in the configured announcement download directory. Verify important investment information against official sources, avoid treating downloaded PDFs as trusted files, and clean up stored announcements if disk usage or retention matters.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
92% confidence
Finding
The skill is presented as a stock research/data assistant, but the announcement endpoint explicitly performs local PDF downloads as a side effect. That creates filesystem write behavior and ingestion of untrusted remote files that is not obvious from the high-level description, increasing the risk of unsafe file handling, storage abuse, and downstream parsing exposure.

Description-Behavior Mismatch

Medium
Confidence
90% confidence
Finding
Documenting a default local save path for downloaded announcements confirms persistent file-write behavior in a skill framed primarily as an analysis assistant. In agent environments, undocumented or under-emphasized local writes can lead to disk consumption, sensitive path exposure, and unsafe chaining into later tools that may read those files.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The API states that announcement requests automatically download PDFs locally but provides no caution about untrusted document handling, storage implications, or parser risks. Because PDFs are complex file formats and often trigger downstream extraction workflows, missing warnings and controls can cause users or agents to process attacker-controlled content with insufficient safeguards.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal