Polymarket Coherence Arb

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed sim-first Polymarket trading skill with expected API-key use and local state files, but users should review the financial-risk settings before enabling live trading.

Install only if you are comfortable with an automated trading skill that runs on a schedule, reads a Simmer API key, writes local position/exposure state, and can place real Polymarket trades when explicitly launched with live options. Keep it in dry-run first, set conservative budgets, and be especially careful with COHERENCE_GROUPS because the skill trusts user-supplied market groups as mutually exclusive.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 89% confidence
Finding: The skill documentation describes use of environment variables and persistent state files, but the skill declares no corresponding permissions. This creates a trust and review gap: operators may approve or run the skill without understanding that it can read secrets from the environment and write local files, which is especially relevant for a trading skill that references API keys and stores live/dry-run state.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal