Polymarket Edge Liquidity
PassAudited by ClawScan on May 10, 2026.
Overview
The skill is transparent and purpose-aligned, but it needs a Simmer API key and can run scheduled scans and place live trades if explicitly invoked with --live.
Only install this if you are comfortable giving it a Simmer API key. Test with the default dry-run mode, confirm it is using the intended virtual or live venue, set conservative trade limits, and avoid --live unless you explicitly want trades placed.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run in live mode, the skill can spend account funds or virtual funds according to the configured venue and trade amount.
The script can place trades when --live is supplied. This is central to the skill's stated purpose and is gated by dry-run default behavior, liquidity/edge filters, and a per-run candidate limit.
parser.add_argument("--live", action="store_true", help="Execute trades") ... result = client.trade(market_id, side, trade_amount, source=TRADE_SOURCE, skill_slug=SKILL_SLUG, reasoning=reasoning)Run in dry-run first, verify TRADING_VENUE and TRADE_AMOUNT, and only use --live when you intentionally want the agent to place trades.
Whoever can run the skill with your SIMMER_API_KEY may be able to access your Simmer account and place live trades if --live is used.
The skill requires a Simmer API key to access the trading service. This is expected for the integration, and the provided code does not show credential logging or unrelated use.
SimmerClient(api_key=os.environ["SIMMER_API_KEY"], venue=os.getenv("TRADING_VENUE", "simmer"))Use a least-privilege API key if available, keep it secret, and rotate it if you no longer trust the environment.
The skill may run recurring scans and API calls in the background, depending on how the platform honors the cron metadata.
The skill declares scheduled managed automation every 20 minutes. This is disclosed and purpose-aligned; the included code still defaults to dry-run unless --live is provided.
cron: "*/20 * * * *" ... automaton: managed: true entrypoint: "edge_liquidity.py"
Confirm whether scheduled execution will be enabled in your environment and monitor or disable the cron behavior if you do not want recurring activity.
Installing an unpinned dependency can pull a different future version than the author tested.
The skill relies on the simmer-sdk package without a pinned version. This dependency is expected for Simmer integration, but the artifact does not lock the exact package version.
requires:
pip: ["simmer-sdk"]Install from a trusted package source and consider pinning or reviewing the simmer-sdk version used in your environment.