← 返回 Skills 市场
Sec Edgar Tools
作者
Tang Weigang
· GitHub ↗
· v0.3.3
· MIT-0
98
总下载
0
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install sec-edgar-tools
功能描述
从 SEC EDGAR 系统获取和解析公司监管文件,支持 SEC 文件检索、财务报表(10-K/10-Q)提取、内部人交易(Form 4)追踪及机构持仓(13F)分析。。
安全使用建议
This skill claims SEC EDGAR functionality but the runtime materials are built around Python + the ZVT ecosystem and Chinese data sources (eastmoney/akshare). Before installing or enabling: 1) Ask the publisher/source (none listed) to clarify intended data sources (US SEC vs A-share) and provide a manifest of required binaries, env vars (e.g., ZVT_HOME), and credentials. 2) Expect to need Python 3.12+ and the 'zvt' package and to set ZVT_HOME; don't supply secrets until you understand which provider needs them and why. 3) Confirm whether the agent will run host commands (python3 -c ...) or attempt to install packages — if you don't want that, decline installation. 4) If you will use EDGAR scraping, ensure the implementation will set a valid User-Agent/contact info and implement rate limiting/backoff (the references explicitly warn this). 5) If unclear, treat this skill as untrusted: run in an isolated environment or ask for a corrected SKILL.md that lists all runtime requirements and exact actions the agent will perform.
功能分析
Type: OpenClaw Skill
Name: sec-edgar-tools
Version: 0.3.3
The bundle provides a comprehensive set of tools and instructions for analyzing SEC EDGAR filings and performing quantitative trading using the ZVT library. It includes extensive safety constraints and security best practices, such as rate-limiting enforcement (finance-C-002), mandatory User-Agent identification (finance-C-001), and strict guidelines against hardcoding API credentials (SHARED-DS-RL-003). The instructions in SKILL.md and seed.yaml are focused on ensuring data integrity, GAAP compliance, and operational stability. No evidence of data exfiltration, malicious execution, or harmful prompt injection was found; the complex 'crystal-compilation' structure appears to be a legitimate framework for managing agent capabilities.
能力标签
能力评估
Purpose & Capability
Name/description say 'SEC EDGAR' file retrieval, but SKILL.md and included files repeatedly reference ZVT, A-share workflows, eastmoney/akshare/joinquant providers, and A-share-specific semantic locks. The declared requirements list nothing (no binaries, no env vars) yet the embedded seed/locks expect a Python+zvt environment and ZVT_HOME. This mismatch (US-EDGAR vs Chinese data-stack + undeclared runtime needs) is incoherent.
Instruction Scope
SKILL.md / seed.yaml execution_protocol instructs the agent to reload seed.yaml, run preconditions (examples call python3 -c 'import zvt' and check ZVT_HOME, write tests, etc.), and enforce many domain-level checks. Those are host-level operations (running python, touching files, checking env vars) but the skill did not declare those runtime requirements. The instructions also demand citing AP*/CW*/SHARED*/KUC* ids and reference long internal resources — this grants the agent broad discretion to run system checks and rely on host-installed libraries.
Install Mechanism
The skill is instruction-only (no install spec and no code files to execute), which is low-risk. However seed.yaml contains an execution_protocol that references host_adapter.install_recipes and 'verify each package with import check' and the LOCKS.md preconditions include pip install suggestions. Those implicit install expectations are not declared in the registry metadata.
Credentials
Registry shows no required env vars or credentials, yet documentation and preconditions reference ZVT_HOME and demand Python and zvt package presence. The skill refers to external data providers (eastmoney, joinquant, akshare) which often require API keys/accounts, but no credentials are declared. Asking for unspecified credentials or relying on host env vars without declaring them is disproportionate and opaque.
Persistence & Privilege
always:false (good). The skill allows autonomous invocation (default) which is normal; combined with the other inconsistencies (host-level preconditions, implicit install steps) this increases the surface but does not by itself justify a higher privilege concern.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sec-edgar-tools - 安装完成后,直接呼叫该 Skill 的名称或使用
/sec-edgar-tools触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.3.3
v0.3.3: bilingual metadata injected. H1 shows SEC EDGAR 工具; tagline replaced with skill-specific Chinese hook; tags upgraded to Level 1-4.
v0.3.1
Remove install.sh — knowledge-only bundle. Host AI consumes directly from URL; no user-side installation needed. Fixes ClawHub suspicious flag.
v0.3.0
Doramagic crystal portfolio v0.3.0. Full 5-layer bp-009 standard. github.com/tangweigang-jpg/doramagic-skills
元数据
常见问题
Sec Edgar Tools 是什么?
从 SEC EDGAR 系统获取和解析公司监管文件,支持 SEC 文件检索、财务报表(10-K/10-Q)提取、内部人交易(Form 4)追踪及机构持仓(13F)分析。。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 98 次。
如何安装 Sec Edgar Tools?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sec-edgar-tools」即可一键安装,无需额外配置。
Sec Edgar Tools 是免费的吗?
是的,Sec Edgar Tools 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Sec Edgar Tools 支持哪些平台?
Sec Edgar Tools 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Sec Edgar Tools?
由 Tang Weigang(@tangweigang-jpg)开发并维护,当前版本 v0.3.3。
推荐 Skills