← Back to Skills Marketplace
Sec Edgar Tools
by
Tang Weigang
· GitHub ↗
· v0.3.3
· MIT-0
98
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install sec-edgar-tools
Description
从 SEC EDGAR 系统获取和解析公司监管文件,支持 SEC 文件检索、财务报表(10-K/10-Q)提取、内部人交易(Form 4)追踪及机构持仓(13F)分析。。
Usage Guidance
This skill claims SEC EDGAR functionality but the runtime materials are built around Python + the ZVT ecosystem and Chinese data sources (eastmoney/akshare). Before installing or enabling: 1) Ask the publisher/source (none listed) to clarify intended data sources (US SEC vs A-share) and provide a manifest of required binaries, env vars (e.g., ZVT_HOME), and credentials. 2) Expect to need Python 3.12+ and the 'zvt' package and to set ZVT_HOME; don't supply secrets until you understand which provider needs them and why. 3) Confirm whether the agent will run host commands (python3 -c ...) or attempt to install packages — if you don't want that, decline installation. 4) If you will use EDGAR scraping, ensure the implementation will set a valid User-Agent/contact info and implement rate limiting/backoff (the references explicitly warn this). 5) If unclear, treat this skill as untrusted: run in an isolated environment or ask for a corrected SKILL.md that lists all runtime requirements and exact actions the agent will perform.
Capability Analysis
Type: OpenClaw Skill
Name: sec-edgar-tools
Version: 0.3.3
The bundle provides a comprehensive set of tools and instructions for analyzing SEC EDGAR filings and performing quantitative trading using the ZVT library. It includes extensive safety constraints and security best practices, such as rate-limiting enforcement (finance-C-002), mandatory User-Agent identification (finance-C-001), and strict guidelines against hardcoding API credentials (SHARED-DS-RL-003). The instructions in SKILL.md and seed.yaml are focused on ensuring data integrity, GAAP compliance, and operational stability. No evidence of data exfiltration, malicious execution, or harmful prompt injection was found; the complex 'crystal-compilation' structure appears to be a legitimate framework for managing agent capabilities.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description say 'SEC EDGAR' file retrieval, but SKILL.md and included files repeatedly reference ZVT, A-share workflows, eastmoney/akshare/joinquant providers, and A-share-specific semantic locks. The declared requirements list nothing (no binaries, no env vars) yet the embedded seed/locks expect a Python+zvt environment and ZVT_HOME. This mismatch (US-EDGAR vs Chinese data-stack + undeclared runtime needs) is incoherent.
Instruction Scope
SKILL.md / seed.yaml execution_protocol instructs the agent to reload seed.yaml, run preconditions (examples call python3 -c 'import zvt' and check ZVT_HOME, write tests, etc.), and enforce many domain-level checks. Those are host-level operations (running python, touching files, checking env vars) but the skill did not declare those runtime requirements. The instructions also demand citing AP*/CW*/SHARED*/KUC* ids and reference long internal resources — this grants the agent broad discretion to run system checks and rely on host-installed libraries.
Install Mechanism
The skill is instruction-only (no install spec and no code files to execute), which is low-risk. However seed.yaml contains an execution_protocol that references host_adapter.install_recipes and 'verify each package with import check' and the LOCKS.md preconditions include pip install suggestions. Those implicit install expectations are not declared in the registry metadata.
Credentials
Registry shows no required env vars or credentials, yet documentation and preconditions reference ZVT_HOME and demand Python and zvt package presence. The skill refers to external data providers (eastmoney, joinquant, akshare) which often require API keys/accounts, but no credentials are declared. Asking for unspecified credentials or relying on host env vars without declaring them is disproportionate and opaque.
Persistence & Privilege
always:false (good). The skill allows autonomous invocation (default) which is normal; combined with the other inconsistencies (host-level preconditions, implicit install steps) this increases the surface but does not by itself justify a higher privilege concern.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sec-edgar-tools - After installation, invoke the skill by name or use
/sec-edgar-tools - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.3.3
v0.3.3: bilingual metadata injected. H1 shows SEC EDGAR 工具; tagline replaced with skill-specific Chinese hook; tags upgraded to Level 1-4.
v0.3.1
Remove install.sh — knowledge-only bundle. Host AI consumes directly from URL; no user-side installation needed. Fixes ClawHub suspicious flag.
v0.3.0
Doramagic crystal portfolio v0.3.0. Full 5-layer bp-009 standard. github.com/tangweigang-jpg/doramagic-skills
Metadata
Frequently Asked Questions
What is Sec Edgar Tools?
从 SEC EDGAR 系统获取和解析公司监管文件,支持 SEC 文件检索、财务报表(10-K/10-Q)提取、内部人交易(Form 4)追踪及机构持仓(13F)分析。。 It is an AI Agent Skill for Claude Code / OpenClaw, with 98 downloads so far.
How do I install Sec Edgar Tools?
Run "/install sec-edgar-tools" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Sec Edgar Tools free?
Yes, Sec Edgar Tools is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Sec Edgar Tools support?
Sec Edgar Tools is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Sec Edgar Tools?
It is built and maintained by Tang Weigang (@tangweigang-jpg); the current version is v0.3.3.
More Skills