ClawHub
Back to skill

Security audit

A股超短线策略-CN

Security checks across malware telemetry and agentic risk

Overview

This is a text-only A-share short-term trading strategy with financial-risk content but no code, installer, credentials, persistence, or hidden authority.

Install only if you want a strategy prompt for A-share short-term trading. Treat the content as educational, not financial advice; short-term trading can lose money quickly. Do not connect this skill to brokerage APIs, credentials, or automated order placement unless you separately review and control that execution workflow.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill provides concrete, high-risk short-term trading instructions, position sizing, and buy/sell rules without any visible disclaimer that the content is not financial advice and may lead to substantial losses. In this context, users could reasonably treat the skill as actionable investment guidance, increasing the chance of harmful financial decisions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.