Eastmoney Fin Search 1.0.5

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Eastmoney financial search helper that sends queries to an external API and saves results locally, with no hidden or destructive behavior found.

Install this only if you are comfortable sending financial search text to Eastmoney's API and leaving result files on disk. Avoid confidential client, portfolio, or nonpublic business information in queries unless your policies allow it, keep MX_APIKEY in a trusted environment, and use the default output directory or a deliberate output path you control.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 91% confidence
Finding: The skill persists retrieved search content and raw JSON to local disk even though its stated purpose is search/retrieval. This creates unnecessary data-retention risk: sensitive queries, proprietary financial research, or regulated information may remain on disk, be read by other processes, or be exfiltrated later from the workspace.

Context-Inappropriate Capability

Medium

Confidence: 95% confidence
Finding: The command-line interface accepts an arbitrary user-supplied output path and writes files there after creating parent directories. In an agent environment, this can be abused to place data in unexpected locations, overwrite application data, or persist information outside the intended workspace boundary, increasing the blast radius of the skill beyond simple search.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal