← Back to Skills Marketplace
93
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install stock-daily-analysis-v2
Description
LLM驱动的每日股票分析系统完整版 v2.1。支持A股/港股/美股智能分析、决策仪表盘、大盘复盘、板块分析、Agent问股、多渠道推送。提供技术面+基本面综合分析。触发词:股票分析、分析股票、每日分析、大盘复盘、板块分析、问股。
Usage Guidance
This skill appears to be what it claims: a local Python-based stock analysis tool that fetches market data, optionally calls an LLM provider, and can push reports to configured channels. Before installing or enabling it:
- Review and edit config.example.json carefully; only add API keys/webhooks you trust and keep config.json private (it's stored on disk).
- Only enable push channels (Feishu, Telegram, Discord, email) if you trust those webhook URLs/tokens — the skill will send report data to them.
- Consider running the skill in an isolated environment or container and avoid placing high-privilege credentials (e.g., cloud admin keys) into config.json.
- Inspect notifier and update scripts (setup.sh / update.sh / run.sh) before executing them; the package does not include an automated installer but does provide shell scripts — running arbitrary scripts can change your system.
- If you plan to use the AI features, supply an API key for only the provider you intend to use and monitor usage.
If you want extra assurance, request the full contents of the remaining truncated files (setup.sh, notifier.py, update.sh, run.sh, and any omitted modules) so they can be reviewed for any hidden network endpoints or shell commands.
Capability Analysis
Type: OpenClaw Skill
Name: stock-daily-analysis-v2
Version: 2.1.0
The skill bundle implements a complex stock analysis system but contains high-risk execution patterns. Specifically, `scripts/setup.sh` clones and executes code from an external GitHub repository (ZhuLinsen/daily_stock_analysis), which introduces a significant supply chain risk. Additionally, `scripts/market_data_bridge.py` utilizes `subprocess.run` to execute external Python scripts based on paths defined in the configuration, creating a potential vector for arbitrary code execution. While these features support the stated functionality, the combination of external code fetching and subprocess execution warrants a suspicious classification.
Capability Assessment
Purpose & Capability
The name/description (daily stock analysis, multi-market, AI recommendations, multi-channel push) match the code and runtime instructions. The skill relies on akshare, optional OpenAI/Gemini, and push webhooks — all sensible for the stated functionality. One minor inconsistency: the registry metadata declares no required config paths or credentials, but the SKILL.md and code expect a local config.json (copied from config.example.json) containing API keys/webhook tokens; this is a documentation/metadata omission rather than malicious behavior.
Instruction Scope
SKILL.md instructs installing Python dependencies, creating/editing config.json, and running the included scripts or scheduling daily_push via cron. The runtime instructions and code only reference market data, AI provider endpoints (via provided API key), and configured push endpoints. I found no instructions that ask the agent to read unrelated system files or transmit arbitrary local data.
Install Mechanism
There is no automated install spec; SKILL.md asks the user to pip install listed dependencies (akshare, pandas, numpy, requests, openai, yfinance). Dependencies come from PyPI (no arbitrary downloads or extracted archives). This is a low-to-moderate risk pattern but proportionate to the skill.
Credentials
The skill does not declare required environment variables in the metadata, but it expects API keys and webhook tokens to be placed into config.json (ai.api_key, tushare_token, feishu_webhook, telegram_token, email_password, etc.). These credentials are proportional to the functions (AI calls, market data, pushes). The code also respects HTTPS_PROXY for Gemini calls. Users should be aware that enabling push channels requires adding tokens/passwords to config.json stored on disk.
Persistence & Privilege
always is false and the skill does not request elevated platform privileges. It will run network requests when invoked (including autonomous invocation, which is the platform default). The skill does not attempt to modify other skills or global agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install stock-daily-analysis-v2 - After installation, invoke the skill by name or use
/stock-daily-analysis-v2 - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.1.0
v2.1: Full version - Fundamental analysis, Market review, Sector analysis, Agent query, Multi-channel push, Concurrent analysis
Metadata
Frequently Asked Questions
What is Daily Stock Analysis v2.1?
LLM驱动的每日股票分析系统完整版 v2.1。支持A股/港股/美股智能分析、决策仪表盘、大盘复盘、板块分析、Agent问股、多渠道推送。提供技术面+基本面综合分析。触发词:股票分析、分析股票、每日分析、大盘复盘、板块分析、问股。 It is an AI Agent Skill for Claude Code / OpenClaw, with 93 downloads so far.
How do I install Daily Stock Analysis v2.1?
Run "/install stock-daily-analysis-v2" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Daily Stock Analysis v2.1 free?
Yes, Daily Stock Analysis v2.1 is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Daily Stock Analysis v2.1 support?
Daily Stock Analysis v2.1 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Daily Stock Analysis v2.1?
It is built and maintained by same1317 (@same1317); the current version is v2.1.0.
More Skills