Skillv0.1.0

ClawScan security

Polymarket Weather Trader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 16, 2026, 12:42 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code, runtime instructions, and requested environment access are consistent with a Simmer/NOAA-driven Polymarket weather trading bot; nothing in the package requests unrelated credentials or external endpoints, though some minor metadata inconsistencies and source/ownership unknowns warrant caution.
Guidance: This skill appears to do what it claims (use Simmer + NOAA to identify and optionally place weather trades). Before installing: (1) Review source if you can — the package includes weather_trader.py and status.py so skim them or run in dry-run mode first. (2) Only provide a Simmer API key with the minimal scope possible and be aware that --live will place real trades; test with dry-run and small settings first. (3) Note metadata inconsistencies (registry metadata vs. _meta.json / SKILL.md versions) and the unknown homepage/source — treat this as an unsigned third-party skill and proceed with caution. (4) If you don't want the skill writing a local config file, run it without saving settings or inspect update_config before saving. (5) Consider running behind network monitoring or with a token you can revoke quickly.

Review Dimensions

Purpose & Capability: okName/description (trade Polymarket weather markets using NOAA via Simmer) align with required env var (SIMMER_API_KEY), network calls (api.simmer.markets and api.weather.gov), and included code (weather_trader.py, status.py). The skill only asks for the Simmer API key which is necessary to place trades and query portfolio.
Instruction Scope: noteSKILL.md and the scripts limit actions to fetching Simmer portfolio/markets, querying NOAA, parsing events, and optionally executing trades. The runtime instructions tell the agent to store settings in env vars and can write/read a local config.json (update_config/load_config). The skill includes a --live mode that will execute real trades and a --no-safeguards flag that disables checks; users should be aware of the financial impact. There are no instructions to read unrelated system files or to call unexpected external endpoints.
Install Mechanism: okNo install spec or external downloads; this is an instruction-only skill with bundled source files. That keeps install risk low — nothing is fetched from arbitrary URLs during install.
Credentials: okOnly SIMMER_API_KEY is required. The additional per-skill config values are environment variables for thresholds/sizing and are appropriate for a trading bot. The skill does not request unrelated credentials (no cloud secrets, no SSH keys, etc.).
Persistence & Privilege: okalways is false and the skill is user-invocable. It writes a local config.json in its directory for settings (expected behavior). It does not request to modify other skills or system-wide settings.