Polymarket Energy Transition Trader
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Polymarket trading skill, but some documented risk controls are looser or missing in the runnable artifacts.
Review and set the actual tunables before enabling live mode, especially minimum days, thresholds, position limits, and market volume filtering. Use paper mode first, and only provide SIMMER_API_KEY or run with --live if you accept that the skill can place real Polymarket trades through the Simmer SDK.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.