polymarket-predictradar-market-movers-skills

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent Polymarket market-movement helper that stores only local alert settings and does not include executable code or hidden install behavior.

Before installing, review the separate polymarket-data-layer skill because it supplies the actual data access. Use alert notes carefully in shared environments, since alert configurations persist locally in scripts/state/alerts.json until changed or deleted.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 90% confidence
Finding: The evaluation requires the skill to create and persist alerts in scripts/state/alerts.json, which expands the skill from read-only market movement analysis into stateful file-writing behavior. This increases attack surface by enabling unintended persistence, cross-run data retention, and possible abuse of alert state if the implementation writes unsafely or trusts user-controlled parameters.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly stores user alert configurations in a persistent local JSON file, but provides no user-facing disclosure, consent flow, retention policy, or guidance about what data is being stored. Even though the stored fields appear limited, persistence of user preferences and notes can create privacy and transparency issues, especially if notes contain sensitive content or the environment is shared.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal