Back to skill
Skillv1.0.0
ClawScan security
Polymarket Odds 1.0.0 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 22, 2026, 5:48 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions are consistent with its stated purpose (querying Polymarket public APIs), request no credentials or installs, and do not perform suspicious actions.
- Guidance
- This skill appears coherent and low-risk: it queries public Polymarket endpoints and requires no credentials. Before installing or executing the script, consider (1) verifying the skill source since 'source' and homepage are missing, (2) reviewing the included polymarket.mjs file yourself or running it in a sandbox to confirm behavior, (3) ensuring your Node runtime supports global fetch (Node 18+), and (4) noting a minor metadata mismatch (ownerId in _meta.json differs from registry metadata) which could indicate packaging inconsistency rather than malicious intent. If you plan to run it on sensitive systems, run it in an isolated environment and monitor network calls to confirm they only target the documented Polymarket domains.
Review Dimensions
- Purpose & Capability
- okName/description (Polymarket odds) match the included CLI and code. The script only calls Polymarket public endpoints (gamma-api.polymarket.com and clob.polymarket.com) to search markets, list events, fetch market details, prices, and order books—exactly what the description promises.
- Instruction Scope
- okSKILL.md instructs running the provided Node script and documents the public endpoints used. The runtime instructions do not ask the agent to read unrelated files, access environment variables, or transmit data to unexpected endpoints. Output is printed to console; no hidden exfiltration or file writes are present in the code.
- Install Mechanism
- okThis is an instruction-only skill with no install spec. A single code file is provided (polymarket.mjs) and there are no downloads or package installers referenced. Low install risk.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The script uses only network access to the public Polymarket APIs; the absence of secret requirements is proportional to the functionality.
- Persistence & Privilege
- okThe skill does not request always:true and does not modify other skills or system settings. It runs as a one-off CLI tool; autonomous invocation is allowed by platform defaults but presents no additional flags here.