← 返回 Skills 市场
mx6315909

A Share Guard

作者 mx6315909 · GitHub ↗ · v1.1.0 · MIT-0
cross-platform ⚠ suspicious
87
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install xiaodi-a-share-guard
功能描述
A-Share Guard - 拒绝噪音,穿透迷雾。基于 OpenClaw 3.28 的金融专家级个股风险诊断系统。
安全使用建议
This skill appears to be a coherent A‑share risk scanner, but exercise caution: (1) SKILL.md references ashare_audit.py which is not present — ask the author or check for a missing script before running. (2) The code makes network calls to third‑party APIs (eastmoney/push2/Tencent) and expects a browserless CDP at 192.168.3.120:3000 — confirm that endpoint is trustworthy and that you are comfortable allowing the skill to access your network. (3) The bundle contains Python scripts that will be executed by the agent (arbitrary code execution); review those scripts yourself or run them in an isolated environment if you can. (4) If you run this in an environment with access to internal services or sensitive systems, consider restricting network access or running in a sandbox. If you need higher assurance, request a corrected release that removes the ashare_audit mismatch and documents the browserless dependency (or points to an official hosted service).
功能分析
Type: OpenClaw Skill Name: xiaodi-a-share-guard Version: 1.1.0 The skill bundle provides a comprehensive stock risk analysis system for A-shares, utilizing Python scripts (scanner.py, sentiment.py, consensus.py) to perform quantitative auditing and sentiment analysis. While the skill requests high-privilege tools such as 'exec' and 'web_fetch', their use is strictly aligned with the stated purpose of fetching financial data from legitimate sources (EastMoney, Tencent) and processing it locally. No evidence of data exfiltration, unauthorized remote control, or malicious prompt injection was found; a hardcoded private IP (192.168.3.120) for a browserless service appears to be a local environment configuration artifact rather than a malicious indicator.
能力评估
Purpose & Capability
The name/description, metadata (web_search, web_fetch, exec) and the included scripts (scanner.py, sentiment.py, f10_scraper.py, consensus.py) are consistent with a financial risk scanner. However SKILL.md and README reference an ashare_audit.py/ashare_audit script that is not present in the file manifest — this mismatch is unexplained and reduces coherence.
Instruction Scope
Runtime instructions require web_search/web_fetch and exec; the provided scripts perform HTTP calls to third‑party APIs (eastmoney, push2, Tencent API) and rely on a browserless CDP service. The instructions and code do not ask to read arbitrary local files or environment variables, but they do instruct execution of bundled Python scripts (arbitrary code execution) and expect network access. The missing ashare_audit reference means the SKILL.md's exact runtime command list may be out of sync with the shipped code.
Install Mechanism
There is no install spec (instruction-only), so nothing is downloaded during install. However, the skill includes four Python scripts which the agent is expected to exec; those scripts will run when invoked. Lack of an install step reduces installer-level risk, but the presence of executable code in the bundle means runtime execution can perform network I/O and arbitrary computation.
Credentials
The skill declares no required env vars or credentials, which is proportionate for a read-only data scanner. But it hard-codes a browserless CDP URL pointing to http://192.168.3.120:3000 in references/config-template.json and f10_scraper.py (BROWSERLESS_URL). That embeds a local/internal endpoint assumption; if the runtime exposes internal network to the skill, it could be used to contact internal resources. No secrets are requested, however network access to internal addresses is a notable risk.
Persistence & Privilege
The skill does not request always:true and is user-invocable only. It does not declare any operations that modify other skills or system-wide settings. Autonomous invocation (default) is allowed but not combined with other high privileges.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install xiaodi-a-share-guard
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /xiaodi-a-share-guard 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
爆款模板重写 + 信号表情化 + 背离检测逻辑
元数据
Slug xiaodi-a-share-guard
版本 1.1.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

A Share Guard 是什么?

A-Share Guard - 拒绝噪音,穿透迷雾。基于 OpenClaw 3.28 的金融专家级个股风险诊断系统。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 87 次。

如何安装 A Share Guard?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install xiaodi-a-share-guard」即可一键安装,无需额外配置。

A Share Guard 是免费的吗?

是的,A Share Guard 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

A Share Guard 支持哪些平台?

A Share Guard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 A Share Guard?

由 mx6315909(@mx6315909)开发并维护,当前版本 v1.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论