Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Polymarket Value Trader
v1.0.0Trade prediction markets on Simmer/Polymarket using value-based analysis. Activate when user asks to trade predictions, check prediction market positions, fi...
⭐ 0· 83·0 current·0 all-time
by@czm200
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md describes a Simmer/Polymarket trading skill and its HTTP API calls, which is consistent with the name/description. However, the registry metadata provided earlier lists no required environment variables or primary credential, while SKILL.md clearly requires SIMMER_API_KEY. Also, the SKILL.md suggests switching to a 'polymarket' venue for real trading but does not document any Polymarket-specific credentials or wallet access — it's unclear whether SIMMER_API_KEY suffices for real USDC trades or if additional keys/funding are needed.
Instruction Scope
The instructions instruct the agent to call Simmer API endpoints using an API key, execute trades, cancel orders, check positions, and post a public 'reasoning' which will appear on market pages. They also instruct maintaining heartbeat state in memory/heartbeat-state.json and adding entries to HEARTBEAT.md. These are within the scope of a trading skill, but they involve writing to workspace files and publishing potentially sensitive strategy text publicly — both are material behaviors the metadata does not fully surface.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, which minimizes installation risk (no downloads or archives).
Credentials
SKILL.md requires SIMMER_API_KEY (used for Authorization headers) which is proportional for a Simmer SDK. The registry metadata, however, lists no required env vars or primary credential — this mismatch is noteworthy. The skill does not declare any Polymarket/USDC credentials even though it says it can trade on Polymarket when enabled; that gap should be clarified before granting secrets.
Persistence & Privilege
The skill does not request always:true and won't be installed automatically. It does instruct the agent to write and update local state files (memory/heartbeat-state.json) and to add to HEARTBEAT.md, which are reasonable for a heartbeat/trading agent but mean the skill will persist last-check timestamps and could record trade history locally.
What to consider before installing
This skill appears to be a legitimate Simmer trading agent but has a few gaps you should confirm before installing: (1) SKILL.md expects SIMMER_API_KEY but the registry metadata omits it — don't supply secrets until the skill explicitly declares them in metadata. (2) Ask the author how 'polymarket' (real USDC) trades are authenticated and funded — will SIMMER_API_KEY trigger real-money trades, or is a separate wallet required? (3) The skill will publish your 'reasoning' publicly on market pages — do not put sensitive or proprietary strategy text in that field. (4) The agent will write heartbeat-state.json and HEARTBEAT.md entries in the workspace; ensure you are comfortable with local state being stored. (5) Prefer to restrict autonomous trading: require user confirmation for any trade or set the venue to 'sim' until you validate behavior. If you need higher assurance, request that the author update the registry metadata to list SIMMER_API_KEY and document Polymarket/auth requirements, or test in a sandbox Simmer account first.Like a lobster shell, security has layers — review code before you run it.
latestvk97fgy0znsz6szesz8gbph17ax84g50gpolymarketvk97fgy0znsz6szesz8gbph17ax84g50gprediction-marketsvk97fgy0znsz6szesz8gbph17ax84g50gsimmervk97fgy0znsz6szesz8gbph17ax84g50gtradingvk97fgy0znsz6szesz8gbph17ax84g50g
License
MIT-0
Free to use, modify, and redistribute. No attribution required.