polymarket-48h-cross-asset-sync-trader 安全扫描报告 — 可信 | ClawSafe

5 /100

polymarket-48h-cross-asset-sync-trader

Trades cross-asset correlation divergences in 5-minute crypto Up or Down markets on Polymarket

A legitimate Polymarket correlation arbitrage trading skill that uses only the simmer-sdk, defaults to paper trading, and has no shell access, obfuscation, credential exfiltration, or undeclared behavior.

技能名称polymarket-48h-cross-asset-sync-trader

分析耗时32.7s

引擎pi

✓

可以安装

This skill is safe to use. The paper-trading default and explicit --live flag for real trades provide good guardrails. No action required.

安全发现 1 项

严重性	安全发现	位置
提示	API key environment variable name is generic 文档欺骗 SIMMER_API_KEY follows a common naming pattern. However, this is a platform-specific credential for the Simmer trading platform, not a system credential, so it does not represent a credential theft risk. The key is used only to instantiate SimmerClient. `api_key=os.environ["SIMMER_API_KEY"]` → No action needed. The credential is platform-specific and not a system secret.	`trader.py:39`

资源类型	声明权限	推断权限	状态	证据
文件系统	`NONE`	`NONE`	—	trader.py: no open/write/create file operations
网络访问	`NONE`	`NONE`	—	trader.py: no direct HTTP calls; only through SimmerClient (simmer-sdk)
命令执行	`NONE`	`NONE`	—	trader.py: no subprocess, no os.system, no os.popen
环境变量	`READ`	`READ`	✓ 一致	trader.py:lines 24-32 only SIMMER_API_KEY and tuning params read
技能调用	`NONE`	`NONE`	—	No skill chaining, no skill.invoke calls
剪贴板	`NONE`	`NONE`	—	No clipboard access
浏览器	`NONE`	`NONE`	—	No browser automation
数据库	`NONE`	`NONE`	—	No database operations

目录结构

3 文件 · 25.3 KB · 665 行

Python 1f · 456L Markdown 1f · 122L JSON 1f · 87L

├─ 📋 clawhub.json JSON 87L · 1.8 KB

├─ 📝 SKILL.md Markdown 122L · 6.0 KB

└─ 🐍 trader.py Python 456L · 17.4 KB

依赖分析 1 项

包名	版本	来源	已知漏洞	备注
`simmer-sdk`	`*`	pip	否	Dependency declared in both SKILL.md and clawhub.json; version unpinned, treat as low risk given no shell execution path in the calling code

安全亮点

✓ No shell execution (subprocess, os.system, popen, bash pipes) — trading is SDK-only

✓ No direct filesystem writes — all file I/O is absent

✓ No obfuscation (no base64, no eval, no exec, no dynamic code generation)

✓ No external script downloads (curl|bash, wget|sh, pip install without context)

✓ No sensitive system path access (~/.ssh, ~/.aws, .env, /etc/)

✓ Single dependency: simmer-sdk (declared in both clawhub.json and SKILL.md)

✓ Paper trading default (venue=sim) — no financial risk without explicit --live flag

✓ Explicit --live flag required for real trading — good opt-in security model

✓ Safeguard gates implemented: YES_THRESHOLD/NO_THRESHOLD, MAX_SPREAD, MAX_POSITIONS

✓ Context checks (flip-flop, slippage) via SimmerClient API before placing orders

✓ No credential exfiltration — API key used only for SDK authentication

✓ Documentation is comprehensive and matches code behavior