Polymarket Market Maker

Security checks across static analysis, malware telemetry, and agentic risk

Overview

This is a disclosed Polymarket trading automation skill that can place real orders only when explicitly run live, so it is not risk-free but the authority fits its stated purpose.

Install only if you understand that --live places real Polymarket orders and automated runs can accumulate inventory or cancel/replace quotes. Start in dry-run mode, use small quote sizes and a market allowlist, verify markets are binary, keep the API key scoped, and monitor open orders, inventory, and the local state file.

SkillSpector (3)

By NVIDIA

Intent-Code Divergence

Medium

Confidence: 94% confidence
Finding: The documentation explicitly says the skill is binary-only, yet also states it will still quote unsupported neg_risk markets where the core pricing formula is incorrect. That inconsistency can cause systematically mispriced orders and unintended live trading losses because users may rely on the documented automation despite the known incompatibility.

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The skill documents --live trading and cron-based automation that place real GTC orders, but it does not present a clear, prominent warning that this exposes wallet funds to market loss, stale quotes, adverse selection, and accumulation of inventory. In a trading automation context, omission of this warning materially increases the chance of unsafe deployment by users who may mistake it for a low-risk routine task.

Missing User Warnings

Low

Confidence: 76% confidence
Finding: The documented local state file stores order IDs and rebate/trading state on disk, but the skill does not warn about file permissions, multi-user access, tampering, corruption, or cross-instance desynchronization. While this is not a remote code execution issue, weak handling of local trading state can lead to privacy leakage, duplicate orders, incorrect cancellations, and operational trading mistakes.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal