tvscreener
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): Setup scripts such as 'run_query.sh' and 'test_markets.sh' perform automated installation or updates of the 'tvscreener' library from PyPI during execution. This runtime dependency management is noted as a minor concern.
- [DYNAMIC_EXECUTION] (LOW): The 'scripts/custom_query.py' script uses 'getattr' to dynamically resolve field constants and market enums from user-provided arguments. This behavior is restricted to the 'tvscreener' library's internal classes and is intended for flexible query construction.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests untrusted market data from TradingView's API.
- Ingestion points: 'ss.get()' calls in 'scripts/custom_query.py' and 'scripts/query_symbol.py'.
- Boundary markers: Absent.
- Capability inventory: CSV file writing ('--csv' argument), stdout printing.
- Sanitization: Absent.
- [SAFE] (SAFE): No evidence of critical malicious patterns such as credential exfiltration, persistence mechanisms, or unauthorized privilege escalation was detected in the analysis of the source code.
Audit Metadata