Skills
skills/staskh/trading_skills/report-stock/Gen Agent Trust Hub

report-stock

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local Python script scripts/report.py using uv run to perform its core logic of data aggregation and analysis.
  • [EXTERNAL_DOWNLOADS]: The skill declares a dependency on trading-skills, a library that likely fetches market data from external financial providers at runtime to populate the generated reports.
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by interpolating external financial data (such as company descriptions) into report templates. Ingestion points: Data gathered by scripts/report.py. Boundary markers: None identified in the Markdown or PDF templates. Capability inventory: Execution of Python scripts via uv and file creation or writing in the sandbox/ directory. Sanitization: No evidence of data sanitization or instruction filtering was detected in the provided source files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 01:21 AM