← Back to Skills Marketplace
wangwllu

SEC Finance

by Lu Wang · GitHub ↗ · v0.1.0 · MIT-0
cross-platform ⚠ suspicious
255
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install sec-finance
Description
Fetch structured financial data and filing metadata from SEC EDGAR and SEC XBRL companyfacts for US-listed companies, especially Chinese issuers. Use when th...
Usage Guidance
This skill appears coherent and implements exactly what it claims: resolving CIKs and pulling structured XBRL companyfacts from SEC endpoints. Before installing or running: (1) review or run the included script in a safe environment — it makes network requests to data.sec.gov and www.sec.gov; (2) be aware the script intentionally falls back to disabling SSL verification on failure — this can expose you to man-in-the-middle attacks if your network is compromised, so prefer running it where TLS interception is not possible or modify the code to remove the insecure fallback; (3) no secrets are requested by the skill, so there is no direct credential exposure risk from installing; (4) the issuer list is static and may be incomplete — verify CIKs when accuracy is important. If you need stronger assurance, ask the publisher for provenance (homepage/source) or run the code in an isolated environment first.
Capability Analysis
Type: OpenClaw Skill Name: sec-finance Version: 0.1.0 The skill is designed to fetch financial data from SEC EDGAR/XBRL but contains a significant security vulnerability. Specifically, `scripts/sec_finance.py` includes a function `_fallback_insecure_ctx` that explicitly disables SSL certificate verification and hostname checking. The script is configured to automatically fall back to this insecure mode if a standard secure connection fails, which exposes the agent to Man-in-the-Middle (MITM) attacks. While this behavior is documented in `SKILL.md` as being for 'endpoint compatibility,' it remains a high-risk capability.
Capability Assessment
Purpose & Capability
Name/description promise (SEC XBRL/companyfacts, CIK resolution, extracting revenue/net income/EPS) matches the included SKILL.md, reference issuer list, and the script. The code only targets SEC endpoints (data.sec.gov and www.sec.gov) and local references/issuers.json; there are no unrelated service credentials, binaries, or config paths requested.
Instruction Scope
SKILL.md is narrowly scoped to resolving CIKs, fetching companyfacts, and returning normalized financial rows; the provided CLI examples map directly to the included Python script. One notable instruction/note in SKILL.md (and implemented in code) is a deliberate fallback to relaxed SSL handling for endpoint compatibility — this broadens network trust and can expose the agent to MITM if an attacker can intercept traffic. The script otherwise does not read unrelated files or environment variables.
Install Mechanism
There is no install spec; this is an instruction-only skill with an included Python script and a local JSON reference file. Nothing is downloaded or written at install time. Execution requires Python3 at runtime, which is expected for this skill type.
Credentials
The skill declares no required environment variables, no primary credential, and no config paths. The script does not attempt to read environment secrets. Network access to SEC endpoints is necessary and proportional to the described functionality.
Persistence & Privilege
Skill is not always-on and is user-invocable; it does not request permanent presence, modify other skills, or access other skills' credentials. Autonomous invocation is allowed (platform default) and is appropriate for a data-retrieval skill.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install sec-finance
  3. After installation, invoke the skill by name or use /sec-finance
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial public release after scope refactor, structure cleanup, and package validation.
Metadata
Slug sec-finance
Version 0.1.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is SEC Finance?

Fetch structured financial data and filing metadata from SEC EDGAR and SEC XBRL companyfacts for US-listed companies, especially Chinese issuers. Use when th... It is an AI Agent Skill for Claude Code / OpenClaw, with 255 downloads so far.

How do I install SEC Finance?

Run "/install sec-finance" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is SEC Finance free?

Yes, SEC Finance is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does SEC Finance support?

SEC Finance is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created SEC Finance?

It is built and maintained by Lu Wang (@wangwllu); the current version is v0.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments