ClawHub
Back to skill

Security audit

Polymarket Global Elections Trader

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Polymarket trading helper that defaults to paper trading and only uses real funds when explicitly run in live mode.

Install only if you intend to use automated trading assistance. Start in paper mode, use a revocable or scoped SIMMER_API_KEY where possible, keep position limits low, verify the simmer-sdk package source, and enable --live only if you accept real financial-loss risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal