ClawHub

Tiger Trading

Security checks across malware telemetry and agentic risk

Overview

This skill matches its stated Tiger Brokers trading purpose, but it can use private brokerage credentials to place or cancel orders without clear confirmation or credential-safety safeguards.

Install only if you trust the publisher and intend to give an agent access to a Tiger brokerage account. Prefer a simulated account, keep private keys in protected files or a secret manager rather than chat or CLI arguments, verify the tigeropen dependency source, and require a separate human approval step before any real order or cancellation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill provides direct buy, sell, and cancel-order instructions without any explicit warning that these actions can immediately affect real positions and may be irreversible or financially harmful. In a trading skill, omission of transaction-risk warnings materially increases the chance of accidental or unauthorized execution, especially because the same interface supports both simulated and real accounts.

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill instructs users to provide highly sensitive authentication material, including private key content or a private key file path, without warning about secret-handling risks. This is especially dangerous in an agent context because users may paste raw private keys into chat or logs, enabling credential theft and potential account compromise with resulting unauthorized trading or data access.

Missing User Warnings

High
Confidence
92% confidence
Finding
The code submits live trade orders immediately with user-supplied parameters and no confirmation, preview, or secondary authorization step. In a trading skill, this makes accidental, coerced, or prompt-manipulated execution materially dangerous because a mistaken call can place real market or limit orders with financial consequences.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal