multi-factor-strategy
PassAudited by ClawScan on May 1, 2026.
Overview
This instruction-only skill is coherent for creating stock-strategy YAML files, but users should only install and run the referenced QuantCLI tool if they trust it.
This appears safe as an instruction-only stock-strategy YAML guide. Before installing or running QuantCLI, make sure you trust the package/source, and review generated strategy files carefully before using them for any financial decisions.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the referenced tool could run third-party code on the user's machine if they choose to follow the setup instructions.
The skill instructs users to install or clone an external QuantCLI tool without a pinned version in the artifact. This is aligned with the skill's purpose, but it introduces normal third-party package/source trust considerations.
pip install quantcli ... git clone https://gitcode.com/datavoid/quantcli.git
Install QuantCLI only from a trusted source, consider pinning a known version, and review the package/source before using it for strategy execution.