Skills
skills/hubblevision/hubble-data-service-skill/cross-market-indicators/Gen Agent Trust Hub

cross-market-indicators

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [DATA_EXFILTRATION]: The skill initiates network requests to an external API at http://43.167.234.49:3101. While intended for financial data retrieval, this establishes a connection to a non-whitelisted external IP address.
  • [PROMPT_INJECTION]: The skill exhibits a vulnerability to indirect prompt injection through its ingestion of external API data.
  • Ingestion points: External data is retrieved from http://43.167.234.49:3101/api/v2/ (SKILL.md) via curl.
  • Boundary markers: The instructions in SKILL.md do not define boundary markers or
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 02:51 PM