Security audit

股票列表自动管理

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it can rewrite and prune a local stock list used for trading without confirmation or backup.

Install only if you intend this skill to modify the specified local stock-list file. Before using it in a real trading workflow, adjust the hardcoded paths, back up manual_stock_list.json, and prefer dry-run or manual review of OCR results before allowing saves or FIFO removals.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill automatically persists recognized stocks and may delete older entries via FIFO once the 30-item limit is reached, but the markdown does not warn users about this stateful modification. Silent persistence and automatic deletion can cause unintended data loss or manipulation of a trading-related watchlist without informed user consent.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.