Security audit
Prediction Market Arbitrage Zh
Security checks across malware telemetry and agentic risk
Overview
The package is internally consistent with its stated purpose: it is a Python-based wrapper that calls AIsa's prediction-market API and only requests the AISA_API_KEY it needs.
This skill legitimately requires one API key (AISA_API_KEY) and will send requests to https://api.aisa.one. Before installing: 1) Verify you trust the AIsa service and review its privacy/billing terms; the API key will be used server-side by that provider. 2) Do not pass private keys, secrets, or other sensitive identifiers (only public wallet addresses or market slugs as needed). 3) Inspect the included Python scripts if you want assurance of behavior (they perform GET requests, compute spreads, and estimate liquidity). 4) Run the scripts in a controlled environment and monitor network/billing usage if you are concerned about exfiltration or unexpected queries.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
