ClawHub

Manifold Markets

v1.0.0

Read and trade on Manifold Markets (search markets, fetch probabilities, inspect users/bets, place bets/sell/comment). Never place a bet/sell/comment without explicit user confirmation.

1· 1.6k·0 current·0 all-time
by@crotalus
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Manifold Markets trading + read) match the declared requirements: curl and MANIFOLD_API_KEY are exactly what a Manifold API integration needs. No unrelated binaries or credentials are requested.
Instruction Scope
SKILL.md provides concrete curl commands against api.manifold.markets, requires fetching the market before writes, and mandates explicit user confirmation before placing bets/sells/comments. It does not instruct reading unrelated files or exfiltrating data to other endpoints (it only references storing the API key in ~/.openclaw/openclaw.json as an optional config location).
Install Mechanism
No install spec or code files are provided (instruction-only). This minimizes on-disk code installation risk.
Credentials
Only a single credential (MANIFOLD_API_KEY) is required and declared as primaryEnv, which is proportionate for a trading/integration skill. No unrelated secrets or multiple credentials are requested.
Persistence & Privilege
Skill is not forced-always (always: false) and does not request elevated system-wide privileges or to modify other skills. Normal autonomous invocation is allowed by platform defaults but is not a red flag by itself.
Assessment
This skill appears coherent for interacting with Manifold Markets. Before installing: only provide a MANIFOLD_API_KEY you trust (consider using a key with limited scope if supported), confirm you are comfortable the agent can make network calls to the Manifold API (these are needed to place trades), and verify the skill source if you require provenance. Note the SKILL.md requires explicit user confirmation before any write action — still be cautious: if you grant the API key and later revoke it if you see unexpected activity. If you need extra assurance, test read-only actions first and avoid storing long-lived credentials in places accessible to other apps.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bdvdk7d9x2sfyvwymabxy8s80btb8

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔮 Clawdis
Binscurl
EnvMANIFOLD_API_KEY
Primary envMANIFOLD_API_KEY

Comments