Polymarket Fast Loop

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for Polymarket automation, but it handles wallet signing credentials and encourages unattended live trading with real funds.

Install only if you intentionally want automated real-money Polymarket trading. Use a dedicated low-balance wallet, start in dry-run mode, set strict daily and per-trade limits, verify the Simmer SDK and publisher, and avoid cron or heartbeat live mode unless you can monitor and disable it quickly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The top-level description is broad enough to match common requests about short-term crypto trading or automation, which increases the chance of unintended invocation. For a live-trading skill, accidental activation is materially risky because it can lead to credential collection prompts, configuration changes, or real-money trading workflows being initiated when the user intended only to discuss strategy or market information.

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The 'When to Use This Skill' section lists broad activation conditions without clear exclusions, making it easy for an agent to select the skill for generic trading-related prompts. In the context of a financial automation skill that can ultimately place live trades with real USDC, ambiguous routing materially increases the chance of unsafe or surprising behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal