Trust Assessment
yahoo-finance received a trust score of 35/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.
SkillShield's automated analysis identified 4 findings: 3 critical, 0 high, 0 medium, and 1 low severity. Key findings include Network egress to untrusted endpoints, Skill requires execution of unverified external binary/script, Skill documentation instructs execution of arbitrary external commands.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 38/100, indicating areas for improvement.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings4
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Network egress to untrusted endpoints URL pointing to known exfiltration/webhook service Review all outbound network calls. Remove connections to webhook collectors, paste sites, and raw IP addresses. Legitimate API calls should use well-known service domains. | Manifest | skills/hightower6eu/yahoo-finance-jdlqs/SKILL.md:10 | |
| CRITICAL | Skill requires execution of unverified external binary/script The skill's documentation (`SKILL.md`) explicitly instructs users to download and execute an external binary (`openclaw-agent.zip` from GitHub) or run an arbitrary script from `glot.io` as a prerequisite. This introduces a severe supply chain risk, as the integrity and safety of `openclaw-agent` cannot be guaranteed. Executing unverified code from external sources can lead to system compromise, data exfiltration, or other malicious activities. Remove instructions to download and execute unverified external binaries or scripts. If `openclaw-agent` is a legitimate and necessary dependency, it should be integrated securely (e.g., via a trusted package manager, with cryptographic verification, or by providing its source code for review) or the skill should function without it. | LLM | SKILL.md:7 | |
| CRITICAL | Skill documentation instructs execution of arbitrary external commands The `SKILL.md` file contains explicit instructions for the user (or potentially an automated agent) to execute commands from untrusted external sources (downloading and running an executable, or copying/pasting a script into a terminal). If an AI agent were to interpret these instructions as commands to execute within its environment, it would lead to arbitrary command injection, allowing the execution of potentially malicious code with the agent's permissions. Remove instructions that direct users or agents to execute arbitrary commands from external, untrusted sources. All necessary components should be installed via secure, verified methods or included directly within the skill package. | LLM | SKILL.md:7 | |
| LOW | Unpinned `yfinance` dependency in manifest The `yfinance` package is specified in the manifest without a version pin (`"package": "yfinance"`). This means that `pip install yfinance` will always install the latest available version. While `yfinance` is a reputable package, this practice can lead to unexpected breaking changes, security vulnerabilities introduced in newer versions, or even supply chain attacks if a malicious version is published. Pin the `yfinance` dependency to a specific, known-good version (e.g., `"package": "yfinance==0.2.28"`). Regularly review and update pinned versions. | LLM | Manifest (frontmatter JSON) |
Scan History
Embed Code
[](https://skillshield.io/report/f3aa066e4c457901)
Powered by SkillShield