Polymarket Spread Arbitrage
v1.0.1Find and analyze arbitrage opportunities across prediction markets like Polymarket and Kalshi.
⭐ 0· 97·0 current·0 all-time
byAIsa@aisadocs
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name and description match the included Python clients and CLI (arbitrage_finder.py and prediction_market_client.py). Required binaries (curl, python3) and the single required env var (AISA_API_KEY) are directly used to call the AIsa API endpoints on api.aisa.one; this is proportionate for a read-only arbitrage/data-aggregation skill.
Instruction Scope
SKILL.md only instructs fetching market, price, and orderbook data from api.aisa.one and contains explicit constraints (must replace {…} placeholders before executing curl). The Python scripts likewise perform GET requests to the same API and parse prices/orderbooks. There are no instructions to read unrelated local files, secret stores, or to transmit data to unexpected endpoints.
Install Mechanism
No install spec is provided (instruction-only + included scripts). That reduces risk — nothing is downloaded or written during install. The required runtime tools are standard (curl, python3).
Credentials
Only AISA_API_KEY is required and used as an Authorization Bearer token to call api.aisa.one. The scripts do not request additional unrelated credentials or file paths. Note: the scripts can query wallet positions/activity if you pass wallet addresses — supplying wallet addresses is optional but could reveal public wallet activity via the API, which is expected for market analysis.
Persistence & Privilege
The skill does not request always:true, does not attempt to modify other skills or system configuration, and does not persist credentials beyond reading AISA_API_KEY from the environment. Autonomous invocation is allowed by default but is not combined with elevated privileges or broad credential access.
Assessment
This skill appears coherent and limited to querying the AIsa prediction-market API. Before installing: 1) Verify that the AISA_API_KEY you supply is intended for the third-party AIsa service (api.aisa.one) and that you trust that provider. 2) Do not provide private keys or wallet seeds — the scripts only need public wallet addresses if you want wallet-specific queries. 3) Because each call costs money (readme notes $0.01 per read), monitor usage and API bills. 4) Run the included Python scripts locally or review the two source files yourself; they perform only GET requests and local parsing. 5) If you want to be tighter: create a scoped API key with minimal permissions and rotate it if you stop using the skill.Like a lobster shell, security has layers — review code before you run it.
latestvk9728h232za4nf4zkdhta4bt7h8427jx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
⚖️ Clawdis
Binscurl, python3
EnvAISA_API_KEY
Primary envAISA_API_KEY