ClawHub

Nansen Polymarket Deep Dive

v0.1.0

Deep dive on a Polymarket market — OHLCV, orderbook, top holders, positions, trades, and PnL leaderboard. Use when analysing a specific prediction market.

0· 124·1 current·1 all-time
byNansen AI@nansen-devops
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description ask for a Polymarket deep dive and the skill only requires the 'nansen' CLI and a NANSEN_API_KEY, which are exactly what you would expect to query Nansen's research commands.
Instruction Scope
SKILL.md contains explicit nansen CLI commands scoped to a market_id and does not instruct reading unrelated files, other env vars, or exfiltrating data to unexpected endpoints. It references using a market_id from another skill (reasonable).
Install Mechanism
Install uses a Node package (nansen-cli) that will create a 'nansen' binary. Installing from the npm registry is a normal choice for a CLI but carries standard supply-chain/code-execution risk: the package is unpinned (no version specified) and the skill metadata lacks a homepage/source to verify the publisher.
Credentials
Only NANSEN_API_KEY is required and declared as the primary credential, which is proportionate for a CLI that queries Nansen's API. No unrelated credentials or config paths are requested.
Persistence & Privilege
always:false and no requests to modify other skills or system-wide settings. The skill does not request persistent elevated privileges.
Assessment
This skill appears to do what it claims: run the nansen CLI against a Polymarket market and requires only your NANSEN_API_KEY. Before installing, consider: (1) the npm package 'nansen-cli' will be fetched from the public registry and no version is pinned — audit or pin the package version if you need stability/trust; (2) only provide an API key with the minimum privileges necessary and be prepared to rotate it if you stop using the skill; (3) if you are cautious, inspect the nansen-cli package source (or vendor a known-good release) before installing; and (4) run installation in an isolated environment if you want to limit risk from supply-chain code execution.

Like a lobster shell, security has layers — review code before you run it.

latestvk97cgxrrhg337sdw2t9gq80qy58330g5

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsnansen
EnvNANSEN_API_KEY
Primary envNANSEN_API_KEY

Install

Node
Bins: nansen
npm i -g nansen-cli

Comments