← Back to Skills Marketplace
Quiver Quantitative
by
stuhorsman
· GitHub ↗
· v1.0.1
2131
Downloads
1
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install quiver
Description
Query alternative financial data from Quiver Quantitative (Congress trading, Lobbying, Government Contracts, Insider transactions). Use this to track politician stock trades or unconventional market signals.
Usage Guidance
This skill appears to be a straightforward Quiver API client, but there are a few red flags you should address before installing or running it:
- QUIVER_API_KEY is required: The code and SKILL.md require QUIVER_API_KEY, but the registry metadata does not list any required env vars. Do not supply other unrelated secrets. Provide only a Quiver API key and verify its scope.
- Missing dependency declaration: The script imports the third-party package 'quiverquant' but there is no install spec. Make sure the runtime environment already has this package installed from a trusted source (e.g., PyPI) or add an explicit install step that pins a known-good version.
- Verify origin and checksum: The skill's source/homepage is unknown. If you will run this, fetch the quiverquant package and this script from trusted sources and verify integrity (checksums / repository). Consider running first in an isolated environment.
- Network and data handling: The script will make outbound calls to Quiver's API. If you need to audit traffic, run it in a controlled environment or capture outgoing endpoints to confirm they go to Quiver's official API domains.
Given the metadata mismatches (env and dependency), treat this as suspicious rather than benign. If the owner/source can correct the metadata (declare QUIVER_API_KEY and the quiverquant dependency) and provide a trustworthy homepage/repo, the risk assessment would improve.
Capability Analysis
Type: OpenClaw Skill
Name: quiver
Version: 1.0.1
The skill bundle is benign. The `SKILL.md` provides clear instructions for using the skill without any prompt injection attempts. The `scripts/query_quiver.py` script legitimately reads the `QUIVER_API_KEY` environment variable to authenticate with the Quiver Quantitative API and queries data as described. There is no evidence of data exfiltration beyond the intended API calls, malicious execution, persistence mechanisms, or obfuscation.
Capability Assessment
Purpose & Capability
The name, description, SKILL.md, and the included Python script all focus on querying Quiver Quantitative data — behavior matches stated purpose. However the registry metadata lists no required env vars while both SKILL.md and the script require QUIVER_API_KEY, creating an inconsistency.
Instruction Scope
Runtime instructions and the script stay within the stated domain (calling Quiver endpoints via the quiverquant library and returning JSON). The SKILL.md references TOOLS.md as an alternate token source but the script only checks the QUIVER_API_KEY env var (it prints an error and exits otherwise), so instructions are slightly vague but not malicious.
Install Mechanism
There is no install spec despite the script importing the third-party package 'quiverquant'. The skill will fail unless that dependency is present in the runtime. Lack of declared dependency is an incoherence (and operational risk) — it also makes it unclear what network or package sources will be used to satisfy that import if the environment installs it at runtime.
Credentials
The script legitimately requires a QUIVER_API_KEY environment variable, which is proportionate to the purpose. However the registry metadata does not declare any required env vars or primary credential, and the SKILL.md's guidance about alternate token sources (TOOLS.md) is vague. The omission in metadata is a mismatch that could lead to surprising behavior during use.
Persistence & Privilege
The skill does not request persistent or elevated platform privileges (always is false). It does not modify other skills or system config. Autonomous invocation is allowed by default (not a concern by itself).
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install quiver - After installation, invoke the skill by name or use
/quiver - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Removed WSB endpoint as it requires premium subscription.
v1.0.0
Initial release.
Metadata
Frequently Asked Questions
What is Quiver Quantitative?
Query alternative financial data from Quiver Quantitative (Congress trading, Lobbying, Government Contracts, Insider transactions). Use this to track politician stock trades or unconventional market signals. It is an AI Agent Skill for Claude Code / OpenClaw, with 2131 downloads so far.
How do I install Quiver Quantitative?
Run "/install quiver" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Quiver Quantitative free?
Yes, Quiver Quantitative is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Quiver Quantitative support?
Quiver Quantitative is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Quiver Quantitative?
It is built and maintained by stuhorsman (@stuhorsman); the current version is v1.0.1.
More Skills