Prediction Bridge Skill
PassAudited by ClawScan on May 1, 2026.
Overview
This looks like a read-only prediction-market lookup tool, but users should know their queries and wallet-address lookups go to a third-party hosted API with limited provenance information.
This skill appears safe for read-only prediction-market lookups. Before installing, be aware that your market queries and wallet-address lookups are sent to the hosted Prediction Bridge API, and the registry does not provide a source repository or homepage for additional verification.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may run the included Python CLI to fetch market data when asked.
The skill operates by running a bundled local Python script. This code execution is clearly disclosed and central to the skill's purpose, with no dependency install or unrelated execution behavior shown.
Run the script at `scripts/prediction_bridge.py` with the appropriate command. It uses only Python stdlib — no pip install needed.
Install only if you are comfortable with the agent running this bundled read-only API client for prediction-market lookups.
Search terms, market IDs, and wallet addresses used in commands may be visible to the external API service.
The script sends API requests to a hosted Prediction Bridge endpoint, with an optional environment-variable override. This is disclosed and purpose-aligned, but user queries and wallet addresses become data sent to that service.
BASE_URL = os.environ.get("PREDICTION_BRIDGE_URL", "https://prediction-bridge.onrender.com")Avoid entering private or sensitive text as search queries, and verify the API endpoint before overriding `PREDICTION_BRIDGE_URL`.
Users have less external context for verifying who operates the API or how reliable the returned market data is.
The registry information does not provide a source repository or homepage for independently verifying the publisher or hosted service provenance.
Source: unknown; Homepage: none
Review the included script and only rely on the market data if you trust the skill publisher and the hosted API endpoint.