ClawHub

Polymarket Market Importer

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Polymarket-to-Simmer market importer, but live scheduled use can change your Simmer account and use import quota.

Install only if you intend to connect a Simmer API key and import matching Polymarket markets. Start with dry run, keep max_per_run and filters conservative, protect the API key, and enable cron/live mode only when you want recurring imports into your Simmer workspace.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
84% confidence
Finding
The skill documentation indicates capabilities involving environment-variable access and file-writing behavior, but no permissions are declared. That creates a transparency and governance gap: users and platforms cannot accurately assess what the skill can access or modify before installation, increasing the chance of unintended secret exposure or local state changes. In this context, the risk is elevated because the skill uses an API key and appears to persist configuration or import-tracking state.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill exposes a live mode that performs real imports into an external service, but the documentation does not prominently warn that this changes external account/application state. A user may run '--live' expecting a simple fetch or preview and unintentionally create imports, consume quotas, or alter their Simmer workspace. The trading/import context makes this more sensitive because actions may affect downstream decisions and limited account allowances.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal