stock-analysis-github
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's HTML generation process includes references to external visualization and mathematical rendering libraries.
- The reports include script tags for
echartsandmathjaxhosted on thecdn.jsdelivr.netContent Delivery Network. These are well-known, established services used for professional data visualization. - [COMMAND_EXECUTION]: The skill requires the agent to execute local Python scripts and shell commands to facilitate its primary function.
- It runs
stock_full_report.pyto gather market data from financial portals via theaksharelibrary. - It uses
npxcommands to initiate MCP (Model Context Protocol) servers for searching industry trends and news via Zhipu AI and Tavily APIs. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it ingests and processes external news and research data.
- Ingestion points: News and research reports are read from
output/data_<stock_code>.jsonand MCP search results during the Phase 2 analysis stage. - Boundary markers: Absent; there are no instructions for the agent to use specific delimiters or ignore instructions that might be embedded in the fetched news or reports.
- Capability inventory: The agent can write reports to the local
output/directory, read local template files, and perform shell-based file concatenation. - Sanitization: No explicit sanitization or filtering of the ingested news titles or research text is performed before processing.
Audit Metadata