UniClaw Prediction Market

The skill is classified as suspicious due to several vulnerabilities, though it lacks clear evidence of intentional malice. Key concerns include the ability to override the `UNICLAW_SERVER` environment variable (lib/config.ts), which could redirect cryptographically signed API requests to an attacker-controlled server. Additionally, the `scripts/withdraw.ts` functionality allows sending tokens to an arbitrary address, presenting a significant prompt injection risk against the AI agent. A hardcoded `UNICITY_API_KEY` (lib/wallet.ts) for an oracle is also present, which could be a minor vulnerability depending on its privileges. While these are vulnerabilities and potential attack surfaces, the skill's code and instructions (SKILL.md) are transparently aligned with its stated purpose of interacting with a prediction market, and do not contain explicit malicious commands or data exfiltration attempts.