nightmarket

The Nightmarket skill presents a coherent vision of finding and paying for third-party APIs via CrowPay, but its footprint is incongruent with a benign helper. The installation method from GitHub, credential handling (stored API key), and automated on-chain payment workflow create elevated risk due to supply-chain, credential exposure, and financial flow complexities. This combination warrants a SUSPICIOUS classification, with security risk elevated by the unverifiable binary installations and credential-forwarding patterns. Mitigations would include pinning and verifying all dependencies from official registries, eliminating transitive skill installations, introducing explicit user consent for each paid call, and robust secret management plus auditable payment controls.