ClawHub
Back to skill

Security audit

Polymarket Geopolitics Sentiment Reversal Trader

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed automated trading bot, but live mode can place real-money trades with limited risk and credential-scope disclosure.

Install only if you intend to run an automated trading bot. Keep it in dry-run first, use a dedicated low-balance account or API key if possible, set external position and spend limits, and do not enable --live or cron execution until you understand exactly what trades it can place.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill supports live trading with real USDC via a `--live` flag, but its warning language is comparatively mild and does not clearly emphasize that users can suffer irreversible financial loss from automated execution mistakes, bad signals, or market conditions. Because this skill is specifically designed to place trades in volatile geopolitical markets, insufficient risk disclosure increases the chance a user enables live mode without fully understanding the consequences.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The manifest requires a sensitive API credential (SIMMER_API_KEY) for an automated trading skill, but the file provides no user-facing disclosure about credential handling, permission scope, or the financial risks of autonomous trading. In a trading context, this omission increases the chance that users supply privileged keys without understanding potential account access, order placement, or loss exposure.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal