install-moomoo-opend
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads installers and archives from 'moomoo.com', 'futunn.com', and 'softwaredownload.moomoo.com'. These are official domains associated with the software vendor and are used to fetch the latest version of the application.
- [COMMAND_EXECUTION]: The skill uses various system commands to facilitate installation, including 'uname' for OS detection, 'dpkg' and 'apt-get' for Linux installation, 'hdiutil' and 'xattr' for macOS setup, and PowerShell for Windows environment management. These commands are standard for software installation tasks.
- [REMOTE_CODE_EXECUTION]: The skill downloads and executes installers for moomoo OpenD. This execution is the primary intended function of the skill and originates from the vendor's own distribution servers.
- [PROMPT_INJECTION]: No malicious injection patterns were found. The skill contains a safety instruction that explicitly forbids the agent from generating or executing code to unlock trading via the SDK, directing users to the manual GUI process for security.
Audit Metadata