Polymarketodds 1.0.0

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a disclosed Polymarket odds helper that reads public market data and stores optional watchlist and paper-trading records locally.

Reasonable to install if you want a Polymarket odds, alert, and paper-trading helper. Be aware it records watched markets and simulated trades under ~/.polymarket, and any cron jobs you add for alerts or digests will continue running until you remove them.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 90% confidence
Finding: The skill declares no permissions, but its documented behavior clearly includes network access to Polymarket's API and local file writes to ~/.polymarket/ for watchlist and portfolio data. This creates a permission/transparency gap: users and the platform may treat the skill as lower risk than it actually is, which can undermine review, sandboxing, and informed consent even if the behavior itself is not overtly malicious.

Description-Behavior Mismatch

Medium

Confidence: 93% confidence
Finding: The skill persists watchlist and portfolio data under ~/.polymarket, which goes beyond read-only querying and creates durable local state on the host. While the writes are limited to user-invoked features and fixed filenames, persistent state can expose user activity/history, survive across runs, and violate expectations for a data-query skill in constrained or ephemeral environments.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal