ClawHub

Polymarket Arb Scanner Pro

Security checks across malware telemetry and agentic risk

Overview

This is a real-money Polymarket trading skill that overstates its safety and can spend wallet funds if live mode is used.

Review carefully before installing. Treat --buy as live trading with real funds, use only a dedicated low-balance wallet, keep the private key out of source control, and do not rely on the advertised risk-free or no-position-taken claims unless the execution logic is changed to support true atomic handling or explicit partial-fill recovery.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Intent-Code Divergence

High
Confidence
99% confidence
Finding
The code claims atomic execution ('both must fill or neither does') but actually submits two separate FOK market orders sequentially. If the first order fills and the second fails due to price movement, liquidity changes, or API errors, the trader is left with an unhedged directional position and the supposed arbitrage guarantee is broken.

Intent-Code Divergence

High
Confidence
98% confidence
Finding
The user-facing message states that a failed FOK means 'no position taken (safe)', but the implementation can still have partial execution because the two legs are posted one after the other. This can mislead an operator into believing funds are not at risk when one side may already be filled.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly documents a `--buy` mode and requests a live Polygon private key, but it does not clearly and prominently warn that this will submit real trades and spend wallet funds. In an agent-skill context, ambiguous execution guidance can cause users or automation to invoke live trading unintentionally, leading to direct financial loss, especially because the claimed 'risk-free' framing may reduce operator caution.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal