cross-market-indicators

SUSPICIOUS. The skill’s finance purpose aligns with fetching indicator data, but its execution path relies exclusively on an unverifiable private Hubble API at a raw IP over plain HTTP, with an embedded API key example and no public ownership proof. The main risk is insecure and opaque data/credential routing, not overt malware.