SMC Multi-Strategy Paper Trader

The skill bundle implements a multi-strategy paper trading system that exhibits high-risk behaviors and security vulnerabilities. Multiple scripts, including macro-rotation.js and paper-monitor-v5.js, read a sensitive GitHub token from the user's home directory (~/.github_token) and exfiltrate portfolio data to a hardcoded external repository (Zero2Ai-hub/Jarvis-Ops). Furthermore, macro-rotation.js utilizes execSync to run curl commands with string interpolation, creating a significant shell injection risk. While these features appear designed for automated reporting and synchronization, the reliance on local secrets and hardcoded remote endpoints without explicit user configuration is highly suspicious.