Scan Report
0 /100
gate-news-listing
Exchange listing tracker skill — fetches exchange listing/delisting/maintenance announcements and supplements with market/fundamental data
Pure read-only MCP skill with no scripts, no credentials, no shell access, and no sensitive file operations. Only fetches exchange listing announcements via defined MCP tools.
Safe to install
This skill is safe to use. No security concerns identified.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file read/write operations; only .md documentation files present |
| Network | NONE | NONE | — | No raw network calls; only uses declared MCP tools news_feed_get_exchange_announ… |
| Shell | NONE | NONE | — | No scripts, no subprocess, no shell execution in the package |
| Environment | NONE | NONE | — | required_env_vars: [] — no environment variable access |
| Skill Invoke | skill_invoke:READ | skill_invoke:READ | ✓ Aligned | Uses only declared MCP tools; references shared runtime rules for agent governan… |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | NONE | — | No database access |
1 findings
Medium External URL 外部 URL
https://www.gate.com README.md:33 File Tree
5 files · 19.7 KB · 437 lines Markdown 5f · 437L
├─
▾
references
│ ├─
mcp.md
Markdown
│ └─
scenarios.md
Markdown
├─
CHANGELOG.md
Markdown
├─
README.md
Markdown
└─
SKILL.md
Markdown
Security Positives
✓ No scripts or executable code — only documentation and configuration files
✓ required_credentials: [] explicitly declares no API keys needed
✓ required_permissions: [] explicitly declares no special permissions
✓ Purely read-only MCP tool usage — no data modification
✓ Clear Safety Rules: no investment advice, no listing predictions, no fabricated data
✓ Well-structured routing to other skills, avoiding scope creep
✓ Explicit deprecation of listing predictions prevents misleading users
✓ No sensitive file paths accessed (~/.ssh, ~/.aws, .env)
✓ No base64, eval, or obfuscated code patterns