ClawHub
Back to skill

Security audit

Polymarket Weather Trader

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for weather-market trading, but it needs review because it can trade real funds using a wallet private key with limited confirmation and incomplete credential disclosure.

Install only if you intentionally want an agent to trade with real funds. Use a dedicated low-balance wallet, keep dry-run mode until you have reviewed the strategy, set conservative max position and max trades values, do not store the private key in shared/plaintext environments, and avoid enabling scheduling or quiet live runs until you are comfortable with unattended trading risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill asks the user to provide and store a wallet private key in an environment variable for live trading, but does not prominently warn that this credential grants direct control over funds and should be handled as highly sensitive secret material. In an agent context, encouraging persistence of a private key without strong safety guidance increases the risk of accidental disclosure, logging, prompt leakage, or reuse in insecure environments.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
Passing --live causes the skill to place real buy and sell orders without any secondary confirmation, preview, or interactive acknowledgment. In an agent or automation context, a mistaken invocation, prompt injection into surrounding orchestration, or operator error can immediately lead to financial loss through unintended trades.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal