Back to skill

Security audit

Polymarket Equity Markets Trader

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Polymarket trading skill that defaults to paper trading and only uses live trading when explicitly run with the live flag.

Install only if you intentionally want an automated prediction-market trading workflow. Start in paper mode, use a dedicated revocable Simmer key with the least permissions available, keep position limits conservative, and enable --live only when you are deliberately accepting real USDC trading risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Intent-Code Divergence

Medium
Confidence
86% confidence
Finding
The skill claims default execution has 'no financial risk,' yet it requires a high-value trading credential and supports a `--live` mode that can place real trades. This can mislead users into underestimating operational and financial exposure, especially if the surrounding platform or user configuration accidentally supplies live credentials or toggles live mode.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.