Skillv1.0.1

ClawScan security

Kalshi F1 Race Momentum Trader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 6, 2026, 6:19 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, runtime instructions, and required credentials are consistent with a Kalshi F1 trading bot; it asks for the expected trading credentials and does not show unexplained or unrelated access requests.
Guidance: This package appears to be a coherent trading skill: it will run in dry-run by default and only place real trades when you run it with --live. Before enabling live mode, do the following: (1) verify the simmer-sdk PyPI package and its maintainer (install in an isolated environment); (2) do not put your primary Solana wallet key in the environment — create a trade-only key and fund only the amount you are willing to risk; (3) test thoroughly in dry-run or a sandbox/testnet to confirm behavior; (4) note that the registry metadata omitted required env vars (SIMMER_API_KEY, SOLANA_PRIVATE_KEY) so rely on the package's SKILL.md/clawhub.json for required permissions; (5) rotate any keys you expose during testing. If you are not comfortable providing a private key, do not enable --live.

Review Dimensions

Purpose & Capability: noteThe skill is a trading bot for Kalshi using the Simmer SDK and (optionally) Solana for live execution — the code imports simmer_sdk and references live trading. One minor inconsistency: the registry metadata at the top of the report listed no required environment variables, while SKILL.md, clawhub.json, and trader.py require SIMMER_API_KEY and SOLANA_PRIVATE_KEY; this appears to be a metadata omission rather than a functional mismatch.
Instruction Scope: okSKILL.md and the code limit actions to market discovery, computing momentum signals, and executing trades via the Simmer SDK/DFlow/Solana. The instructions do not direct the agent to read unrelated system files. The SKILL.md explicitly defaults to dry-run and requires an explicit --live flag to execute real trades.
Install Mechanism: okThere is no install spec that downloads arbitrary external code; dependencies are limited to the simmer-sdk PyPI package. The skill is instruction-only for install but does include a local Python file (trader.py).
Credentials: noteThe skill requires SIMMER_API_KEY and SOLANA_PRIVATE_KEY for live trading, which is proportionate to its stated purpose. The code also reads optional environment variables (e.g., TRADING_VENUE, AUTOMATON_MAX_BET). Because SOLANA_PRIVATE_KEY is a high-value secret, users should treat it cautiously and use a segregated/trade-only key and/or testnet funds for evaluation.
Persistence & Privilege: okThe skill does not request always:true and autostart is false. clawhub.json marks the entrypoint for automaton management but does not force always-on inclusion. The skill may write or update its own config via simmer_sdk.skill functions (expected behavior) and does not modify other skills or system-wide settings.