ClawHub

Polymarket Sol Momentum

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent trading bot, but it can run scheduled live trades with real funds and limited confirmation, so it needs careful review before use.

Install only if you intend to let an automated strategy trade through your Simmer account. Start with `TRADING_VENUE=sim`, keep trade amount and max trades low, verify Simmer account limits, and do not provide a live-capable API key or set a real venue unless you accept recurring real-money trade and loss risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill documentation describes capabilities that access environment variables and external networks (`SIMMER_API_KEY`, CoinGecko, Simmer, Polymarket) but does not declare corresponding permissions. In an agent or marketplace setting, missing permission declarations reduce transparency and can cause reviewers or runners to underestimate the skill's ability to exfiltrate secrets or initiate trades over the network.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The live-trading instructions tell users how to execute real trades (`python strategy.py --live`, `TRADING_VENUE=polymarket`) without an explicit, prominent warning that this can spend real funds and incur financial loss. In a trading skill, that context makes the omission more dangerous because the operational effect is immediate monetary exposure, not just a generic runtime side effect.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal