Back to skill
Skillv1.0.0
ClawScan security
Smart Agent Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 30, 2026, 3:31 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an internally consistent Polymarket trading skill that uses the aion-sdk and an AION_API_KEY to scan markets and (optionally) execute trades; it mostly matches its description but has a few minor manifest/instruction mismatches and enables scheduled autonomous runs if you provide a live API key and TURN_ON the RUN_LIVE flag.
- Guidance
- This skill is coherent for its purpose, but take these precautions before installing: 1) Treat the AION_API_KEY like money: only provide a key with the minimum permissions necessary (use a test/sandbox key if available). 2) By default the code is dry-run unless --live or RUN_LIVE=true — double-check environment settings after installation because the skill is scheduled (cron every 15 minutes) and can run autonomously. 3) The manifest (clawhub.json) omits several env vars used by the code (MARKET_LIMIT, MIN_ENTRY_PRICE, MAX_ENTRY_PRICE, AUTO_REDEEM). If you rely on defaults, review and set those env vars explicitly to avoid unexpected live behavior. 4) Inspect or vet the installed aion-sdk package source before granting the API key. 5) Consider running initially in a sandbox or with small trade_amount and strict min-edge settings, and review logs/output to confirm behavior before scaling up.
Review Dimensions
- Purpose & Capability
- okName, description, declared pip dependency (aion-sdk), primaryEnv (AION_API_KEY), and the code all align: the skill queries Polymarket, computes an edge from a user thesis, and can submit trades via the AionClient. Required network access and the single primary credential are appropriate for a trading skill.
- Instruction Scope
- noteSKILL.md and the code are scoped to market discovery, context checks, decision logic, and trade execution. The skill does not attempt to read arbitrary user files or other credentials. Note: the skill can run in 'live' mode and will execute trades if --live or RUN_LIVE is enabled; the SKILL.md emphasizes dry-run by default but the automaton scheduling plus an env var can enable live trading without interactive flags.
- Install Mechanism
- okNo external downloads or scripts; requires installing 'aion-sdk' via pip (declared in clawhub.json). This is a traceable public-package install rather than an archive URL or remote arbitrary code download.
- Credentials
- noteThe primary required credential (AION_API_KEY) is proportional to the stated purpose. However, the manifest (clawhub.json) and SKILL.md/code are not fully synchronized: the code and SKILL.md reference several environment variables not listed in the manifest (MARKET_LIMIT, MIN_ENTRY_PRICE, MAX_ENTRY_PRICE, AUTO_REDEEM, etc.). That omission can cause surprises about configurable behavior. Also be aware that providing a live AION_API_KEY + setting RUN_LIVE (or passing --live) enables autonomous trading.
- Persistence & Privilege
- notealways:false (good), but clawhub.json declares cron: '*/15 * * * *' and automaton.managed:true, so the skill is intended to run on a schedule (every 15 minutes) once installed. Combined with a valid AION_API_KEY and RUN_LIVE enabled, the skill will autonomously place trades on that schedule — a normal capability for a trading automaton but a material privilege to grant to any API key.