allstock-data
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches real-time stock quotes and historical K-line data from well-known Tencent Finance domains, including gtimg.cn and ifzq.gtimg.cn. \n- [EXTERNAL_DOWNLOADS]: References the adata Python library as an optional dependency for more comprehensive financial data access. \n- [COMMAND_EXECUTION]: Provides curl command examples for interacting with external financial data endpoints to retrieve market information. \n- [PROMPT_INJECTION]: Ingests data from external APIs, which creates a potential surface for indirect prompt injection. \n
- Ingestion points: Stock market data retrieved from Tencent Finance's HTTP and JSON APIs. \n
- Boundary markers: No explicit boundary markers or instructions to ignore embedded commands are present in the skill documentation. \n
- Capability inventory: The skill facilitates data retrieval via network requests (curl) and Python-based data processing. \n
- Sanitization: The skill relies on the structured nature of the API responses (e.g., tilde-delimited strings) to isolate data, but no explicit sanitization logic is described.
Audit Metadata