Futu Client

Security checks across malware telemetry and agentic risk

Overview

This trading skill is purpose-aligned but gives an agent access to sensitive brokerage data and real order placement without enough documented guardrails.

Install only if you intentionally want an agent to interact with a live brokerage environment. Keep any simulation mode as the default, use least-privilege credentials where possible, avoid exposing account data in chat/logs, and require explicit human approval before retrieving sensitive account details or placing, modifying, or canceling real orders.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly documents access to live account balances, positions, watchlists, and real order placement using TrdEnv.REAL, but does not provide clear safety guardrails, privacy warnings, or require explicit confirmation before risky actions. In an agent context, this increases the chance of unintended disclosure of sensitive financial data or accidental execution of real trades, especially because the examples normalize live trading access rather than strongly steering users to simulation mode.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal