Polymarket Soccer Shock Ladder

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed automated trading skill, but it needs review because a documented smoke-test venue can still be used with live order-submission logic.

Install only if you are comfortable with automated trading risk. Use dry-run first, keep stake size low, avoid --live --venue sim until the publisher enforces the documented venue restriction, and use a limited wallet rather than one holding broad funds.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Intent-Code Divergence

Medium

Confidence: 90% confidence
Finding: The skill documentation says `--venue sim` is only a smoke test, but the execution paths in `place_ladder` and `_place_exit` still submit trades to whatever venue is configured, including `sim`, when `--live` is enabled. In an automated trading skill, that mismatch is dangerous because operators may assume a safe dry plumbing path exists while the code still performs live order-submission logic against an unintended backend, increasing the risk of accidental execution, bad testing assumptions, or policy bypass.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal