ClawHub

Gprophet Api

v1.0.6

AI-powered stock prediction and market analysis for global markets

0· 465·0 current·0 all-time
bygordon@filwu8
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, SKILL.md, README, and _meta.json consistently document an external HTTP API for stock prediction and analysis. The only required credential is an API key (GPROPHET_API_KEY) which matches the described authentication (X-API-Key). There are no unrelated binaries, config paths, or credentials requested.
Instruction Scope
SKILL.md gives concrete HTTP endpoints and examples and instructs the agent to supply the API key via header or environment variable. It also documents webhook/callback support and an example MCP server entry; be aware that using callback_url will cause the service to POST results to arbitrary URLs — only provide trusted callback endpoints. Otherwise instructions stay within the stated purpose and do not ask the agent to read unrelated files or secrets.
Install Mechanism
This is instruction-only (no install spec, no code files executed). That is low risk: nothing will be downloaded or written to disk by an installer.
Credentials
Only a single environment variable (GPROPHET_API_KEY) is required, which is proportionate for an external API. However the API key carries billing/authorization power and should be treated as sensitive — use test/limited keys for evaluation, apply quotas, and monitor usage.
Persistence & Privilege
The skill is not always:true and does not request persistent system-wide privileges or other skills' config. It does not modify agent settings according to the provided materials.
Assessment
This skill appears coherent: it simply documents how to call an external G-Prophet API and requires one API key. Before installing, use a test/limited-scope API key (not a production account), set strict quotas/billing alerts, and monitor usage. Be cautious when using callback_url — only supply endpoints you control or trust to avoid leaking analysis data. Do not share or commit your API key; rotate/revoke it if compromised. If you need stronger assurance, verify the homepage and service documentation, and consider creating an account with minimal points/permissions for evaluation.

Like a lobster shell, security has layers — review code before you run it.

latestvk972xtw3k2706dg0dxex71kh298302yb

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📈 Clawdis
EnvGPROPHET_API_KEY
Primary envGPROPHET_API_KEY

Comments