Security audit

Polymarket Ladder Social Posts Trader

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Polymarket trading skill that defaults to paper trading and only makes live trades when explicitly run with live mode.

Install only if you intend to run an automated Polymarket strategy. Keep it in paper mode until reviewed, use the least-privileged Simmer key available, check the risk tunables, and run with --live only when prepared for real USDC trades.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 89% confidence
Finding: The skill declares access to a high-value credential (`SIMMER_API_KEY`) and describes live trading capability, but the static finding indicates no explicit permissions are declared despite environment access being implied. This creates a governance and least-privilege gap: a platform may expose secrets or capabilities to the skill without users receiving a clear permission prompt or policy boundary.

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The manifest requires a sensitive API credential and describes an automated trading skill, but it does not provide any user-facing disclosure about external network access, credential usage, or the fact that the skill can place trades. In a trading context, this omission is security-relevant because users may supply credentials without understanding the scope of automation or financial actions the skill can perform.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal