akshare-stock
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate financial analysis. Extensive review of the 12 Python scripts and configuration files reveals no indicators of prompt injection, privilege escalation, or persistence mechanisms.
- [EXTERNAL_DOWNLOADS]: The skill retrieves financial data from reputable Chinese financial portals (such as Eastmoney and Xueqiu) via the AKShare library. These network operations are necessary for the skill's primary functionality and target well-known industry sources.
- [CREDENTIALS_UNSAFE]: The config.yaml file includes placeholder fields for email and WeChat notification credentials. These fields are currently empty or contain empty strings, posing no risk of credential exposure in the provided code.
- [COMMAND_EXECUTION]: The SKILL.md documentation provides standard CLI commands for users to execute the included Python scripts for data analysis and reporting. This behavior is expected and transparent.
Audit Metadata