Duplicate Indicators Creation on StixExport.py

[pe3zx]

I have tired to implement STIX for AlienVault OTX by myself, to learn how to use python-stix and cybox modules, and I used StixExport.py as a template.

According to the process to create a new indicator, for example, a URL indicator, an observable_ will be added to a new indicator and then a new indicator will be added to a package. When this process is done, <indicator:Title> and <indicator:Description> will contain information from mind.

mind = Indicator()
mind.description = p_indicator["description"]
mind.title = "%s from %spulse/%s" % (p_indicator["indicator"], PULSE_SERVER_BASE, str(self.pulse["id"]))
observable_.title = "%s - %s" % (p_indicator["type"], p_indicator["indicator"])
mind.add_observable(observable_)
self.stix_package.add_indicator(mind)

By the way, SitxExport.py also has another part that responsible to create and add information to an indicator new_ind, but new_ind are not going to use on any part of code. Please clarify me why it needs to create both new_ind and mind when only mind is used.

...
new_ind = Indicator()
new_ind.description = p_indicator["description"]
...