Scan Report
5 /100
A股-股市分析和投资顾问
中国A股/港股市场股票数据查询与分析服务,提供行情、财务指标、指数、董秘问答等数据
Pure documentation skill for A-share market data queries with no executable code, declaring only network:READ and environment:READ capabilities to a single documented API endpoint.
Safe to install
This skill is safe to use. Monitor the external API endpoint tax.yyyou.top for availability and ensure TAX_API_KEY rotation policies are followed.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file operations documented or required |
| Network | READ | READ | ✓ Aligned | SKILL.md:59 - GET requests only to tax.yyyou.top/stocks/* |
| Shell | NONE | NONE | — | No shell commands in documentation |
| Environment | READ | READ | ✓ Aligned | SKILL.md:8 - TAX_API_KEY for API authentication only |
| Skill Invoke | NONE | NONE | — | No cross-skill invocation documented |
| Clipboard | NONE | NONE | — | No clipboard access documented |
| Browser | NONE | NONE | — | No browser automation documented |
| Database | NONE | NONE | — | No database access documented |
5 findings
Medium External URL 外部 URL
https://tax.yyyou.top/** README.MD:18 Medium External URL 外部 URL
https://tax.yyyou.top/ README.MD:140 Medium External URL 外部 URL
https://tax.yyyou.top/stocks/ SKILL.md:59 Medium External URL 外部 URL
https://tax.yyyou.top/stocks/... SKILL_REFERENCE.MD:27 Medium External URL 外部 URL
https://tax.yyyou.top SKILL_REFERENCE.MD:47 File Tree
4 files · 21.7 KB · 611 lines Markdown 4f · 611L
├─
CHANGELOG.MD
Markdown
├─
README.MD
Markdown
├─
SKILL_REFERENCE.MD
Markdown
└─
SKILL.md
Markdown
Security Positives
✓ No executable scripts or code files present - pure documentation skill
✓ Declares read-only network access with GET-only requests to a single documented endpoint
✓ Explicitly states no trading, no local file storage, no credential exfiltration
✓ Strong security guidance against sharing API keys in chat
✓ No hidden functionality or undocumented capabilities detected
✓ Clean capability map with no undocumented permissions
✓ Well-structured documentation with clear use cases and boundaries