ClawHub

积存金价格监控助手

Security checks across malware telemetry and agentic risk

Overview

This is a small gold-price monitor that fetches a public Sina/Shanghai Gold Exchange quote and stores local price history, but users should not treat its buy/sell prompts as authoritative financial advice.

Install only if you are comfortable with scheduled outbound requests to Sina Finance and local storage of price baselines. Use the alerts as informational, verify prices with a trusted source before making financial decisions, and be aware that some comments and labels still mention CCB even though the implementation uses Sina/Shanghai Gold Exchange Au99.99 data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill instructs execution of a local Python script that uses network access and reads/writes local state files, but the skill metadata declares no permissions. This creates a transparency and policy-enforcement gap: a host may allow the skill under the assumption it is inert while it can actually access the filesystem and external data sources.

Tp4

High
Category
MCP Tool Poisoning
Confidence
86% confidence
Finding
The documented purpose says the skill monitors 'real-time international gold prices' and sends notifications, but the described behavior is actually polling a Sina Finance endpoint for Shanghai Gold Exchange Au99.99 RMB-denominated quotes and only emitting JSON for a caller to act on. This mismatch can mislead operators into making financial decisions based on the wrong market and assuming alerting/notification happens automatically when it does not.

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The skill claims to monitor CCB/international gold pricing, but the implementation actually pulls Shanghai Gold Exchange Au99.99 data from Sina as a substitute. This data-source mismatch can mislead downstream automation or human trading decisions, especially because the output is framed as actionable buy/sell guidance and may be scheduled unattended.

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The header documentation says the script gets real-time CCB accumulated-gold quotes, but the code uses Sina Finance data instead. In a financial monitoring skill, inaccurate provenance is security-relevant because it undermines trust boundaries and can cause operators or other agents to act on data they believe came from a different, potentially more authoritative source.

Intent-Code Divergence

Low
Confidence
91% confidence
Finding
The function name and surrounding comments imply CCB-backed pricing, while the function actually fetches and parses Sina market data. This inconsistency increases the chance that maintainers, reviewers, or calling agents will rely on the wrong assumptions about origin, semantics, and expected pricing behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal