Back to skill
Skillv0.1.0
ClawScan security
Polymarket Fee Aware Divergence · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 28, 2026, 6:00 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill appears to implement the described fee-aware trading logic and uses the Simmer SDK, but there are metadata/install inconsistencies and a few unexpected declarations (unused optional wallet key, missing install step for pip dependency, and public trade reasoning) that you should review before enabling autonomous runs.
- Guidance
- Before installing or enabling this skill: - Confirm that SIMMER_API_KEY is the only credential you intend to grant; this API key lets the skill list markets and place trades. Treat it like a trading key and limit privileges where possible. - The package declares a pip dependency (simmer-sdk) but provides no install step; ensure the environment installs simmer-sdk (pip install simmer-sdk) or the skill will fail to run. - The clawhub.json lists WALLET_PRIVATE_KEY as optional, but the code doesn't use it; ask the author whether external-wallet functionality exists and whether providing a private key is necessary (avoid giving private keys unless absolutely required and reviewed). - The skill will include the divergence math and AI consensus in the public trade 'reasoning' field and logs — if that data is sensitive, do not enable public trade posting. - There are minor bugs/rough edges in the code (e.g., format_reason references an undefined variable which could crash or garble logged reasons); test thoroughly on TRADING_VENUE=sim and run many paper trades as recommended before enabling live funds. - Because the skill can autonomously run on a cron, limit MAX_TRADES and run in paper mode until you are confident in behavior. Rotate credentials after testing if they were exposed in logs. If you want, provide the runtime environment details (whether pip packages are auto-installed by the platform) and I can re-evaluate with higher confidence.
Review Dimensions
- Purpose & Capability
- noteThe code implements AI-vs-market divergence trading on Polymarket-imported markets and uses a SimmerClient to list markets and place trades — this matches the skill description. Declared primaryEnv (SIMMER_API_KEY) is appropriate for the Simmer SDK. Minor mismatch: the top-level registry metadata in the report said "Required env vars: none", but clawhub.json and the code require SIMMER_API_KEY.
- Instruction Scope
- okSKILL.md and the code restrict actions to fetching markets, evaluating simple math (ai_consensus, price, fees, spread), and calling the Simmer SDK trade API. The instructions do not attempt to read arbitrary system files or unrelated environment variables. Note: every placed trade includes a human-readable reasoning string which will be visible in the public trades tab and logs (possible information disclosure of AI consensus and internal math).
- Install Mechanism
- concernThe repository is instruction-only (no platform install spec), but clawhub.json declares a pip requirement for 'simmer-sdk'. The runtime will sys.exit if simmer-sdk is not installed. Because there is no install mechanism included, the platform/operator must ensure simmer-sdk is present — this mismatch can cause runtime failure and suggests incomplete packaging.
- Credentials
- concernSIMMER_API_KEY is declared and used — appropriate. However: clawhub.json documents an optional WALLET_PRIVATE_KEY (only needed for external-wallet self-custody trading) but the Python code does not reference WALLET_PRIVATE_KEY — this is an unexplained declaration. The code also reads FAD_VERBOSE (env) for verbosity, but that variable is not declared in clawhub.json or SKILL.md. These inconsistencies are proportionally small but worth clarifying. Also be aware that providing SIMMER_API_KEY grants the skill the ability to place trades via the Simmer API.
- Persistence & Privilege
- okalways:false (not force-included); automaton.managed true with a cron schedule (*/30 * * * *) is reasonable for a trading bot. The skill does not modify other skills or system-wide settings. Autonomous invocation will allow periodic trading — a normal platform capability but a real financial risk if misconfigured.