Back to skill
Skillv1.0.0
ClawScan security
A Share Pro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 6, 2026, 8:26 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (local A‑share watchlist and multi‑source price fetch), with only minor documentation and portability issues to review before installing.
- Guidance
- This skill appears to do what it says: manage a local A‑share watchlist and fetch quotes from public providers. Before installing: (1) inspect install.sh because it will pip install packages into your environment — consider using a virtualenv. (2) Be aware the code will make outbound HTTP(S) requests to Tencent/Xueqiu/Baidu (and optionally Tushare if you supply TUSHARE_TOKEN). (3) The package contains a couple of hardcoded dev paths (sys.path insert with /Users/wangrx/...), which is harmless but brittle; you may want to remove those lines for portability. (4) If you want to use Tushare, set TUSHARE_TOKEN in your environment; otherwise it remains unused. (5) Backup existing ~/.openclaw/a_share before running uninstall or install if you have important data.
Review Dimensions
- Purpose & Capability
- noteThe code and instructions match the described purpose: local text watchlist management and multi‑source real‑time quotes (Tencent, Xueqiu, Baidu, optional Tushare). One minor inconsistency: SKILL.md emphasizes “no Token dependency”, yet config.py reads an optional TUSHARE_TOKEN from the environment (default empty). This is acceptable as optional functionality but slightly misleading in docs.
- Instruction Scope
- noteSKILL.md only instructs installing and running the provided scripts (add/list/remove/summarize). Runtime instructions are scoped to local files and network requests to public data providers. Two portability/maintenance oddities: monitor.py and summarize_performance.py insert a hardcoded absolute path (/Users/wangrx/...) as a fallback sys.path — this is not harmful but indicates the package was packaged from a local dev environment and may fail on other systems. Also the TUSHARE_TOKEN env var is used but not documented in SKILL.md as optional.
- Install Mechanism
- noteThere is no platform package install spec in the registry metadata, but the bundle includes an install.sh that the user is instructed to run. install.sh runs pip3 install for requests, beautifulsoup4 and pandas (PyPI packages). This is a common moderate‑risk action (it will install packages from PyPI into the environment). The packages and sources are standard and expected for the functionality.
- Credentials
- noteThe skill declares no required environment variables, which matches the primary behavior. However, config.py reads an optional TUSHARE_TOKEN from the environment — it is not required and defaults to empty. No other secrets or unrelated credentials are requested. Data is stored under the user's home (~/.openclaw/a_share).
- Persistence & Privilege
- okThe skill does not request always:true, does not modify other skills, and only creates a data directory under the user's home. Uninstall.sh attempts to remove that data and the skill directory (with an optional backup). These are normal for a user‑installed local skill.