← 返回 Skills 市场
hmaya

Gangtise Kb

作者 hmaya · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
232
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install gangtise-kb
功能描述
Query Gangtise knowledge base API to search and retrieve financial/market information. Use when the user asks about stocks, companies, market concepts, finan...
使用说明 (SKILL.md)

Gangtise Knowledge Base Skill

This skill provides access to Gangtise's knowledge base API for querying financial and market information.

First Time Setup

Before using this skill, you need to configure your API credentials:

python3 scripts/configure.py

You will be prompted to enter your Access Key and Secret Key, which can be obtained from: https://open.gangtise.com

Authentication

The API uses OAuth2-style authentication:

  1. Use Access Key + Secret Access Key to get an access token via loginV2
  2. V2 接口返回的 accessToken 已经携带了 Bearer 前缀,后续接口调用不需要再拼接

Auth Request

{
  "accessKey": "your-access-key",
  "secretAccessKey": "your-secret-key"
}

Auth Response

{
  "code": "000000",
  "data": {
    "accessToken": "Bearer xxxx-xxxx-xxxx-xxxx",
    "expiresIn": 3600,
    "uid": 123,
    "userName": "your-name",
    "tenantId": 1,
    "time": 1704067200
  }
}

Base URL

  • Base URL: https://open.gangtise.com

Available Scripts

Configuration (First Time Setup)

python3 scripts/configure.py

Interactive setup for API credentials. Run this first before using any other scripts.

Get Access Token

python3 scripts/get_token.py

Returns a valid access token for API calls.

Query Knowledge Base

# Basic query
python3 scripts/query_kb.py "比亚迪最新消息"

# With options
python3 scripts/query_kb.py "特斯拉" --type 10,40 --top 5 --days 180

# With explicit token
python3 scripts/query_kb.py "宁德时代" --token YOUR_TOKEN

API Endpoints

Authentication

  • POST /application/auth/oauth/open/loginV2
    • Body: { "accessKey": "...", "secretAccessKey": "..." }
    • Returns: { "code": "000000", "data": { "accessToken": "..." } }
    • Note: V2接口返回的accessToken已经携带了Bearer前缀

Knowledge Base Query

  • POST /application/open-data/ai/search/knowledge/batch
    • Header: Authorization: Bearer {token}
    • Content-Type: application/json

Request Parameters

参数名 必选 类型 说明
queries List\x3CString> 查询条件列表,最大支持5个查询条件
top Integer 返回文档数量,默认10,最大支持20
resourceTypes List\x3CInteger> 知识库资源类型列表
knowledgeNames List\x3CString> 知识库类型(默认只使用系统库)
startTime Long 数据查询开始时间(13位时间戳)
endTime Long 数据查询结束时间(13位时间戳)

Resource Types

代码 类型 说明
10 券商研究报告 证券公司发布的研究报告
20 内部研究报告 机构内部研究报告
40 首席分析师观点 分析师观点文章
50 公司公告 上市公司公告
60 会议平台纪要 会议纪要
70 调研纪要公告 调研纪要
80 网络资源纪要 网络资源
90 产业公众号 产业相关公众号文章

Knowledge Names

  • system_knowledge_doc - 系统库(默认)
  • tenant_knowledge_doc - 租户库

Response Format

{
  "code": "000000",
  "msg": "操作成功",
  "status": true,
  "data": [
    {
      "query": "查询问题",
      "data": [
        {
          "content": "文本切片内容",
          "resourceType": 10,
          "title": "文件标题",
          "company": "公司",
          "industry": "行业",
          "time": 1746506803000,
          "sourceId": "溯源id",
          "knowledgeName": "知识库名称",
          "extraInfo": {
            "position": {
              "page": [1],
              "totalPages": 14,
              "polygon": []
            }
          }
        }
      ]
    }
  ]
}

HTTP Status Codes

状态码 说明
200 操作成功
429 接口繁忙,请稍后再试

Usage Examples

Query single topic

python3 scripts/query_kb.py "比亚迪" --top 3

Query with specific resource types

python3 scripts/query_kb.py "新能源" --type 10,50 --top 5

Query with time range (last 30 days)

python3 scripts/query_kb.py "AI芯片" --days 30 --top 10

Raw JSON output

python3 scripts/query_kb.py "宁德时代" --json

Configuration File

Credentials are stored in config.json (created automatically by configure.py):

{
  "ACCESS_KEY": "your-access-key",
  "SECRET_KEY": "your-secret-key",
  "BASE_URL": "https://open.gangtise.com"
}

Note: The configuration file has restricted permissions (600) to protect your credentials.

安全使用建议
This skill appears to implement a legitimate Gangtise KB client, but there are notable red flags you should address before using it: 1) The package includes config.json with ACCESS_KEY and SECRET_KEY already filled — do not assume these are safe to use. Remove or overwrite that file and provide your own credentials (and rotate any real keys if published). 2) The network code disables SSL certificate verification; consider editing get_token.py/query_kb.py/temp_query.py to use normal certificate checks (remove the check_hostname/verify_mode overrides or use a verified context). 3) The top-level wrapper expects a binary gangtise-kb/gangtise-kb.py which is not present — the skill may fail or behave unexpectedly; inspect and test in a sandbox. 4) Run these scripts in a controlled environment (offline or network-restricted VM) until you replace credentials and fix SSL settings. If you plan to grant persistent or autonomous invocation to an agent, be extra cautious because the embedded credentials could be used without further prompts. If you want me to, I can show the exact lines to change to re-enable SSL verification or help remove the embedded credentials safely.
功能分析
Type: OpenClaw Skill Name: gangtise-kb Version: 1.0.0 The skill bundle contains hardcoded API credentials in 'config.json' and consistently disables SSL certificate verification ('ssl.CERT_NONE') across multiple files, including 'scripts/get_token.py', 'scripts/query_kb.py', and 'scripts/temp_query.py'. While these are critical security vulnerabilities that expose the user to Man-In-The-Middle (MITM) attacks and credential theft, they appear to be unintentional flaws rather than intentional malware. No evidence of data exfiltration to unauthorized domains or hidden backdoors was found.
能力评估
Purpose & Capability
The name, description, and scripts match the stated purpose (querying Gangtise knowledge base). However the repository includes a pre-populated config.json with ACCESS_KEY/SECRET_KEY (credentials) and the top-level wrapper expects a local binary (gangtise-kb/gangtise-kb.py) that is not present in the file manifest — packaging is inconsistent with the expected runtime.
Instruction Scope
SKILL.md and the scripts only call Gangtise API endpoints and store/use API credentials; they do not attempt to read unrelated system files. Concerns: multiple scripts disable SSL certificate verification (ctx.check_hostname=False and verify_mode=CERT_NONE or use of ssl._create_unverified_context()), which weakens transport security. temp_query.py performs several automated queries when run (not harmful by itself but will send queries using whatever credentials are present).
Install Mechanism
This is an instruction-and-script-only skill with no install spec or external downloads. No archive extraction or remote installers are used.
Credentials
The skill declares no required environment variables, but the package ships with a filled config.json containing ACCESS_KEY and SECRET_KEY. Including live credentials in the bundle is disproportionate and risky (leaked/compromised keys, unintended usage). The scripts will use those keys automatically if the user does not overwrite them. No other unrelated credentials are requested.
Persistence & Privilege
The skill does not request elevated privileges and is not always-enabled. It stores configuration in a local config.json file (its own path) and configure.py sets file permissions to 600. That behavior is expected, but the presence of a pre-filled config.json means the skill will persist and use embedded credentials unless changed.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install gangtise-kb
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /gangtise-kb 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
gangtise-kb v1.0.0 - Initial release. - Enables querying the Gangtise knowledge base API for financial and market information. - Includes scripts for configuration, authentication, and querying the knowledge base. - Provides detailed usage, parameter, and endpoint documentation. - Supports filtering by resource type, time range, and returning results as raw JSON.
元数据
Slug gangtise-kb
版本 1.0.0
许可证 MIT-0
累计安装 2
当前安装数 2
历史版本数 1
常见问题

Gangtise Kb 是什么?

Query Gangtise knowledge base API to search and retrieve financial/market information. Use when the user asks about stocks, companies, market concepts, finan... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 232 次。

如何安装 Gangtise Kb?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install gangtise-kb」即可一键安装,无需额外配置。

Gangtise Kb 是免费的吗?

是的,Gangtise Kb 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Gangtise Kb 支持哪些平台?

Gangtise Kb 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Gangtise Kb?

由 hmaya(@hmaya)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 留言讨论