ClawHub
Back to skill

Security audit

Polymarket 24h Player Prop Consistency Trader

Security checks across malware telemetry and agentic risk

Overview

This is a clearly disclosed Polymarket trading skill that defaults to simulation and only uses live trading when explicitly run with the live flag.

Use the default simulation mode first. Before enabling live trading, review `simmer-sdk`, use a dedicated limited-scope API key if possible, keep funds limited, and set the trade-size and max-position tunables to match your loss limits.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill documentation indicates access to environment-based secrets such as `SIMMER_API_KEY` and describes trading execution, yet no explicit permissions are declared. That creates a trust and review gap: a user or platform may underestimate the skill's access to high-value credentials and its ability to place trades, increasing the chance of unintended credential exposure or unauthorized financial actions.

Tp4

High
Category
MCP Tool Poisoning
Confidence
93% confidence
Finding
The skill's declared purpose centers on analysis of player prop consistency, but the content also describes execution of simulated or real trades and use of sensitive credentials, with live mode available via a flag. This mismatch is dangerous because reviewers or users may approve what appears to be an analytics skill without realizing it can perform financial transactions, which materially raises the risk of unintended live trading and misuse of API authority.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal