金融资讯搜索

Name: mx-finance-search
Author: financial-ai-analyst

View on ClawHub↗

Share on X Share on LinkedIn Share on Bluesky

100Critical

The financial-ai-analyst skill is vulnerable to

ThreatsCI SM CS BC S HITL

Behavior Analysis

Description verified — behavior matches claim

Claims to do

金融资讯搜索: 通过**自然语言查询**检索时效性金融信息，数据来自于妙想大模型，适用场景包括： - **最新新闻与政策动态** - **公司公告与事件跟踪** - **券商研报与市场解读** - **宏观事件对市场/板块影响分析**

Actually does

The skill executes a Python script (`scripts/get_data.py`) that uses an `EM_API_KEY` to query an API provided by East Money's Miaoxiang service (likely via `https://ai.eastmoney.com/mxClaw`). It retrieves financial information like news, announcements, and research reports. The retrieved content is then printed to the console and can be optionally saved as a `.txt` file in the local workspace.

Threat Analysis

AI Agent Traps ↗Scanned 4/15/2026

Content InjectionPerception1 finding

Semantic ManipulationReasoningclean

Cognitive StateMemory & Learningclean

Behavioural ControlAction2 findings

SystemicMulti-Agent Dynamicsclean

Human-in-the-LoopHuman Overseerclean

Skill Info

Namefinancial-ai-analyst/mx-finance-search

Registryclawhub

Version1.0.8

PURLpkg:clawhub/financial-ai-analyst/mx-finance-search@1.0.8

Stars57

Downloads14,179

Installs24

Source

Repository ↗

SHA-256da2c3bf03bbc...

SHA-14cbf34c1e269...

MD541952a5f97ff...

TLSH4da11a3c0816...

ssdeep96:MwZno2HEi...

Size5,072 bytes

Install

This skill has been flagged as potentially malicious. Review the findings below before installing.

OpenClawDocs

https://clawhub.ai/financial-ai-analyst/mx-finance-search

14,179 downloads24 installs

ClawHubDocs

openclaw skills install financial-ai-analyst/mx-finance-search

Assessments (2)

AI Agent Traps ↗

Prompt Injection Detectedcriticalprompt injection

DeBERTa classifier detected prompt injection (confidence: 1.00)

100% confidence

Potential Command Injection via User Inputmediumcommand execution

The skill executes a Python script with user-provided input as a command-line argument. If the underlying script does not properly sanitize this input before using it in shell commands, it could lead to command injection.

80% confidenceline 81

python3 {baseDir}/scripts/get_data.py "寒武纪 688256 最新研报与公告"

Potential Arbitrary File Write Capabilitymediumdata exfiltration

The skill supports saving query results to local .txt files, with an `output_dir` parameter. If the directory path or filename generation is vulnerable to path traversal, an attacker could write files to arbitrary locations on the system.

70% confidenceline 108

支持将结果保存为本地 `.txt` 文件, output_dir=Path("workspace/mx_finance_search")

Badge

Markdown

[![Mondoo Skill Check](https://mondoo.com/ai-agent-security/api/badge/clawhub/financial-ai-analyst/mx-finance-search.svg)](https://mondoo.com/ai-agent-security/skills/clawhub/financial-ai-analyst/mx-finance-search)

HTML

<a href="https://mondoo.com/ai-agent-security/skills/clawhub/financial-ai-analyst/mx-finance-search"><img src="https://mondoo.com/ai-agent-security/api/badge/clawhub/financial-ai-analyst/mx-finance-search.svg" alt="Mondoo Skill Check" /></a>

Image URL

https://mondoo.com/ai-agent-security/api/badge/clawhub/financial-ai-analyst/mx-finance-search.svg

Secure your AI agents

Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.

Continuous scanning of skills across all registries
Policy enforcement before skills reach your agents
Integration with your existing security workflow