Skillv1.0.0

ClawScan security

Polymarket 1.0.0 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 11, 2026, 9:36 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its description: a read-only Polymarket query tool that calls the public Gamma API, requires no credentials, and contains no obvious suspicious behavior.
Guidance: This skill appears to do exactly what it says: it runs a bundled Python script that queries Polymarket's public Gamma API and prints formatted results. It requires network access and the Python 'requests' library but no secrets or cloud credentials. Before installing: (1) ensure you trust the skill source (the registry owner/slug) because it will execute bundled Python code; (2) confirm the runtime environment has Python and the 'requests' package, or install that package in an isolated environment; (3) if you have strict network policies, note the skill will make outbound HTTPS requests to gamma-api.polymarket.com; (4) if you expect trading/wallet functionality, this skill is read-only and does not handle authentication or keys. If any of these are concerns, run the script manually in a sandboxed environment or review/modify the code before enabling autonomous invocation.

Purpose & Capability: okThe name/description say 'query Polymarket' and the included script only calls the public Gamma API (gamma-api.polymarket.com) to list/search/format markets. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: okSKILL.md instructs running the included Python script with specific subcommands. The script's runtime behavior is limited to HTTP GET requests to Polymarket's public API, JSON parsing, and formatting output. It does not read local files, environment secrets, or send data to unexpected endpoints.
Install Mechanism: okThere is no install spec (instruction-only at install time) and the script is bundled in the skill. This is low-risk; the script notes a dependency on the 'requests' Python package but does not automatically download or execute external code from arbitrary URLs.
Credentials: okThe skill declares no required environment variables or credentials and the code does not access environment variables. It only needs network access to Polymarket's public API, which is proportionate to its purpose.
Persistence & Privilege: okThe package does not request permanent presence (always is false), does not modify other skills or system-wide settings, and does not store credentials. Autonomous invocation is allowed by default but the skill's capabilities are limited and read-only.