Skillv0.0.3

ClawScan security

Polymarket Ladder F1 Championship Trader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 28, 2026, 2:27 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code and dependencies match its trading purpose, but manifest/registry metadata inconsistencies (missing required env & install info in the top-level listing) and the ability to perform real trades warrant caution before installation.
Guidance: Before installing: (1) Fix the manifest mismatch — the top-level listing incorrectly omits required environment variables and install deps; treat that as a red flag until clarified. (2) This skill requires a SIMMER_API_KEY — only supply an API key with minimal necessary permissions (avoid keys that allow withdrawals or broad account control). (3) The skill can place real trades when run with --live; run in default paper/sim mode first to validate behavior. (4) The package depends on simmer-sdk via pip — review that library's provenance and source. (5) Inspect the code (trader.py) yourself or have it audited if you will attach real funds. If you are comfortable with those checks and trust the owner, the functionality itself is coherent with its purpose; otherwise do not provide live credentials or run with --live.

Review Dimensions

Purpose & Capability: noteThe skill's name and description describe a Polymarket F1 distribution-arbitrage trader; the code (trader.py) uses a SimmerClient and the clawhub.json declares a SIMMER_API_KEY and pip dependency on simmer-sdk — these are coherent with the stated purpose. However, the top-level registry listing incorrectly reported "Required env vars: none" and "No install spec" while the package actually requires SIMMER_API_KEY and lists simmer-sdk as a pip dependency. That metadata mismatch is an incoherence that should be resolved.
Instruction Scope: okSKILL.md and trader.py instruct only to discover markets, compute distribution-sum violations, and place trades via simmer-sdk. The skill defaults to paper trading (venue="sim") and requires an explicit --live flag to place real trades. The instructions and code do not reference unrelated system files, unexpected endpoints, or arbitrary data exfiltration.
Install Mechanism: noteThere is no external arbitrary-download installer; dependencies are declared as pip: simmer-sdk in clawhub.json (typical). But the top-level summary said "No install spec — instruction-only", which contradicts clawhub.json. Installing pip packages is moderate risk compared to no install; verify the provenance of simmer-sdk on PyPI and ensure you trust it.
Credentials: noteThe code requires SIMMER_API_KEY (accessed via os.environ["SIMMER_API_KEY"]) and reads several SIMMER_* tunables (MAX_POSITION, MIN_TRADE, etc.), which are declared as tunables in clawhub.json. Requiring an API key for the trading SDK is expected. The inconsistency is that the registry metadata earlier reported no required env vars — this is misleading and should be corrected. Confirm the required key's scope and permissions before providing it.
Persistence & Privilege: okThe skill is not marked always:true and autostart is false. automaton.managed is true (entrypoint trader.py), which means the skill can be run by the platform when invoked but it does not force inclusion in all agent runs. The skill does not request modification of other skills or system-wide settings.