← Back to Skills Marketplace

A Share Guard

Name: A Share Guard
Author: mx6315909

by mx6315909 · GitHub ↗ · v1.1.0 · MIT-0

cross-platform ⚠ suspicious

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install xiaodi-a-share-guard

Description

A-Share Guard - 拒绝噪音，穿透迷雾。基于 OpenClaw 3.28 的金融专家级个股风险诊断系统。

Usage Guidance

This skill appears to be a coherent A‑share risk scanner, but exercise caution: (1) SKILL.md references ashare_audit.py which is not present — ask the author or check for a missing script before running. (2) The code makes network calls to third‑party APIs (eastmoney/push2/Tencent) and expects a browserless CDP at 192.168.3.120:3000 — confirm that endpoint is trustworthy and that you are comfortable allowing the skill to access your network. (3) The bundle contains Python scripts that will be executed by the agent (arbitrary code execution); review those scripts yourself or run them in an isolated environment if you can. (4) If you run this in an environment with access to internal services or sensitive systems, consider restricting network access or running in a sandbox. If you need higher assurance, request a corrected release that removes the ashare_audit mismatch and documents the browserless dependency (or points to an official hosted service).

Capability Analysis

Type: OpenClaw Skill Name: xiaodi-a-share-guard Version: 1.1.0 The skill bundle provides a comprehensive stock risk analysis system for A-shares, utilizing Python scripts (scanner.py, sentiment.py, consensus.py) to perform quantitative auditing and sentiment analysis. While the skill requests high-privilege tools such as 'exec' and 'web_fetch', their use is strictly aligned with the stated purpose of fetching financial data from legitimate sources (EastMoney, Tencent) and processing it locally. No evidence of data exfiltration, unauthorized remote control, or malicious prompt injection was found; a hardcoded private IP (192.168.3.120) for a browserless service appears to be a local environment configuration artifact rather than a malicious indicator.

Capability Assessment

ℹ Purpose & Capability

The name/description, metadata (web_search, web_fetch, exec) and the included scripts (scanner.py, sentiment.py, f10_scraper.py, consensus.py) are consistent with a financial risk scanner. However SKILL.md and README reference an ashare_audit.py/ashare_audit script that is not present in the file manifest — this mismatch is unexplained and reduces coherence.

⚠ Instruction Scope

Runtime instructions require web_search/web_fetch and exec; the provided scripts perform HTTP calls to third‑party APIs (eastmoney, push2, Tencent API) and rely on a browserless CDP service. The instructions and code do not ask to read arbitrary local files or environment variables, but they do instruct execution of bundled Python scripts (arbitrary code execution) and expect network access. The missing ashare_audit reference means the SKILL.md's exact runtime command list may be out of sync with the shipped code.

ℹ Install Mechanism

There is no install spec (instruction-only), so nothing is downloaded during install. However, the skill includes four Python scripts which the agent is expected to exec; those scripts will run when invoked. Lack of an install step reduces installer-level risk, but the presence of executable code in the bundle means runtime execution can perform network I/O and arbitrary computation.

⚠ Credentials

The skill declares no required env vars or credentials, which is proportionate for a read-only data scanner. But it hard-codes a browserless CDP URL pointing to http://192.168.3.120:3000 in references/config-template.json and f10_scraper.py (BROWSERLESS_URL). That embeds a local/internal endpoint assumption; if the runtime exposes internal network to the skill, it could be used to contact internal resources. No secrets are requested, however network access to internal addresses is a notable risk.

✓ Persistence & Privilege

The skill does not request always:true and is user-invocable only. It does not declare any operations that modify other skills or system-wide settings. Autonomous invocation (default) is allowed but not combined with other high privileges.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install xiaodi-a-share-guard
After installation, invoke the skill by name or use /xiaodi-a-share-guard
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.1.0

爆款模板重写 + 信号表情化 + 背离检测逻辑

Metadata

Slug xiaodi-a-share-guard

Version 1.1.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is A Share Guard?

A-Share Guard - 拒绝噪音，穿透迷雾。基于 OpenClaw 3.28 的金融专家级个股风险诊断系统。 It is an AI Agent Skill for Claude Code / OpenClaw, with 87 downloads so far.

How do I install A Share Guard?

Run "/install xiaodi-a-share-guard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is A Share Guard free?

Yes, A Share Guard is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does A Share Guard support?

A Share Guard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created A Share Guard?

It is built and maintained by mx6315909 (@mx6315909); the current version is v1.1.0.

More Skills