Skillv1.0.2

ClawScan security

Polymarket Nothing Ever Happens · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 25, 2026, 9:21 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requested credentials, dependencies, and runtime behavior are consistent with a Polymarket trading bot that uses the Simmer SDK; nothing in the package indicates it is trying to do something unrelated to that purpose.
Guidance: This package appears to be what it says: a Polymarket 'buy NO' trading bot that uses the Simmer SDK. Before installing: 1) Prefer using a managed Simmer wallet rather than placing your WALLET_PRIVATE_KEY in an environment variable; if you must use a private key, keep it in a secure store and rotate it regularly. 2) Review the simmer-sdk and any gamma_api client code you install (the script may expect a gamma_api module or a local gamma_api.py). 3) Run the script in dry-run/scan mode first to observe candidate selection and ensure it won't execute trades you don't want. 4) Note that the script creates a local daily_spend.json file in its directory. 5) If you will run this in an automated environment, ensure the environment variables and files are accessible only to trusted processes. If you want me to, I can also scan the full simmer-sdk and gamma_api client code (if you provide them) for any surprising network endpoints or secret exfiltration behavior.

Review Dimensions

Purpose & Capability: okName/description, required env vars (SIMMER_API_KEY, optional WALLET_PRIVATE_KEY), and the included code all align with a Simmer-powered Polymarket trading bot that discovers markets via Gamma and executes trades via the Simmer SDK. No unrelated cloud credentials or unrelated system access are requested.
Instruction Scope: noteSKILL.md stays within the trading use case (scan Gamma, import into Simmer, trade NO). Minor inconsistencies: the Python code falls back to importing a local gamma_api module and prints an instruction to copy gamma_api.py from another repo if missing, but SKILL.md does not mention this explicit dependency; code also reads an override env var AUTOMATON_MAX_BET which is not documented in the SKILL.md/clawhub metadata. The skill writes a local daily_spend.json file and uses a simmer-sdk config helper — both are expected for bookkeeping but are side effects users should know about. The skill asks users to store WALLET_PRIVATE_KEY in an environment variable for live trading (expected for self-custody trading) — this is sensitive and should be handled carefully.
Install Mechanism: okNo install spec in the registry; SKILL.md instructs installing simmer-sdk via pip which matches the code. There are no external downloads, URL-based installers, or archive extraction operations in the package metadata. This is a low-risk install model (pip dependency only).
Credentials: noteThe primary required secret is SIMMER_API_KEY (declared). WALLET_PRIVATE_KEY is optional and only required for self-custody live trading — that is proportionate for a trading bot. Caveat: storing a private wallet key in an environment variable has inherent security risk; the skill and metadata correctly mark it as optional, but users should prefer managed wallets or otherwise secure key storage. The code also reads AUTOMATON_MAX_BET from env (undeclared) as a runtime override; this is not a secret but is undocumented.
Persistence & Privilege: okThe skill is not marked always:true and does not request system-wide privileges. It writes its own daily_spend.json in the skill directory and uses its own config via simmer_sdk helpers. It does not modify other skills or system configs.