yahoo-finance-2
Warn
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes instructions to use 'sudo' for creating symbolic links in the system directory '/usr/local/bin'. It also specifies manual file deletion commands for troubleshooting the '~/.yf2-cookies.json' file.
- [DATA_EXFILTRATION]: The skill identifies and references a sensitive local file path at '~/.yf2-cookies.json' used for storing authentication cookies for Yahoo Finance sessions.
- [EXTERNAL_DOWNLOADS]: The skill requires downloading and installing 'jq' through Homebrew and the 'yahoo-finance2' library via the npm package registry.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes financial data from external, untrusted sources.
- Ingestion points: Financial modules and search results fetched from Yahoo Finance via the 'yf' CLI (SKILL.md).
- Boundary markers: No delimiters or specific instructions to ignore embedded commands are present in the skill definition.
- Capability inventory: Includes network requests to external APIs and file system operations like binary linking and cookie file management (SKILL.md).
- Sanitization: No evidence of validation or sanitization of the external financial data is provided before it is processed by the agent.
Audit Metadata