yahoo-finance

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.95). These URLs host shell and PowerShell install scripts on a non-obvious/third‑party domain and the skill explicitly instructs users to curl/Invoke‑RestMethod and pipe the output directly to sh/iex — a classic high‑risk pattern that can deliver arbitrary code.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly states the tool "Get[s] stock prices, quotes, fundamentals... using Yahoo Finance" via the yfinance library, so the skill fetches and ingests open/public third‑party web content from Yahoo Finance that the agent reads and uses to drive outputs/decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The README explicitly instructs running remote install scripts (curl -LsSf https://astral.sh/uv/install.sh | sh and irm https://astral.sh/uv/install.ps1 | iex), which fetch and execute remote code and are used to install the required 'uv' runtime dependency for this skill.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (low risk: 0.30). The prompt includes optional instructions that modify system-wide locations (ln -sf to /usr/local/bin) and suggests running a remote install script (curl | sh) which can change the machine state and may require sudo, but it does not explicitly ask the agent to escalate privileges, bypass security, modify protected system configs, or create users.