ClawHub

Polymarket Fast Loop

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed real-money Polymarket trading bot, but its live loop guidance and a more aggressive shipped config require careful review before use.

Install only if you want an automated real-money trading tool. Run dry-run first, inspect and set config.json explicitly, keep max_position small, avoid live cron or heartbeat loops unless you add hard stop/loss/spend limits and monitoring, and use a Simmer API key you can revoke quickly.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
93% confidence
Finding
The skill clearly requires network access, reads an environment secret (`SIMMER_API_KEY`), and instructs running a Python script that may persist configuration (`config.json`), yet it does not declare corresponding permissions. Undeclared capabilities weaken review and consent boundaries because an agent or platform operator may underestimate what the skill can access or modify before enabling live trading behavior.

Vague Triggers

Medium
Confidence
81% confidence
Finding
The description and usage guidance use broad trigger language such as 'use when user wants to trade sprint/fast markets, automate short-term crypto trading, or use CEX momentum as a Polymarket signal,' which can cause over-eager invocation. In a financial trading skill, unintended activation is more dangerous than usual because it can lead to market actions, exposure to fees, or moving from informational use into trade execution pathways.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal