扫描报告
5 /100
polymarket-twitter-weekend-drift-trader
Exploits systematic weekday/weekend posting rate differences in post-count bin markets
A legitimate Polymarket trading bot that uses a weekend drift trading strategy with well-documented paper-trading safeguards. No malicious behavior detected.
可以安装
This skill is safe to use. Ensure the SIMMER_API_KEY has paper-trading permissions only and never expose live-capable credentials to automated agents.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No filesystem access observed |
| 网络访问 | READ | READ | ✓ 一致 | SDK abstraction for market data and trading API calls |
| 命令执行 | NONE | NONE | — | No subprocess, os.system, or shell execution |
| 环境变量 | READ | READ | ✓ 一致 | Reads SIMMER_* env vars - all declared in SKILL.md |
| 技能调用 | NONE | NONE | — | No cross-skill invocation |
| 剪贴板 | NONE | NONE | — | No clipboard access |
| 浏览器 | NONE | NONE | — | No browser automation |
| 数据库 | NONE | NONE | — | No direct database access |
2 项发现
中危 外部 URL 外部 URL
https://simmer.markets/skills SKILL.md:10 提示 邮箱 邮箱地址
[email protected] SKILL.md:123 目录结构
3 文件 · 17.8 KB · 498 行 Python 1f · 290L
Markdown 1f · 125L
JSON 1f · 83L
├─
clawhub.json
JSON
├─
SKILL.md
Markdown
└─
trader.py
Python
依赖分析 1 项
| 包名 | 版本 | 来源 | 已知漏洞 | 备注 |
|---|---|---|---|---|
simmer-sdk | * | pip | 否 | Published by Simmer Markets on PyPI; version not pinned but from trusted publisher |
安全亮点
✓ Paper trading mode is default - no financial risk without explicit --live flag
✓ All environment variables are documented in SKILL.md
✓ Risk parameters (max position, thresholds, etc.) are clearly declared
✓ Uses official simmer-sdk from PyPI with verifiable publisher
✓ No shell execution, subprocess, or system command calls
✓ No credential harvesting beyond the required SIMMER_API_KEY
✓ No filesystem operations or sensitive file access
✓ No obfuscation or encoded payloads
✓ SDK provides abstraction layer for all API interactions
✓ Source code is clean, readable Python with no suspicious patterns