polymarket-bundle-cross-coin-5min-trader Security Report — Trusted | ClawSafe

5 /100

polymarket-bundle-cross-coin-5min-trader

Trades cross-coin divergence in 5-minute crypto Up/Down bundles on Polymarket by detecting when BTC/ETH/SOL/XRP deviate from group consensus in the same time window.

Clean Polymarket trading bot using simmer-sdk; paper trading by default, no shell execution, no sensitive path access, no obfuscation, and all functionality is accurately described in documentation.

Skill Namepolymarket-bundle-cross-coin-5min-trader

Duration40.0s

Enginepi

✓

Safe to install

This skill is safe to use. The only minor gap is that network I/O via the simmer-sdk is not explicitly declared in SKILL.md, but it is inherent to the stated trading purpose and carries no security risk.

Findings 1 items

Severity	Finding	Location
Info	Network I/O not explicitly declared in SKILL.md Doc Mismatch The simmer-sdk makes outbound network calls to Polymarket APIs for market discovery and trade execution. SKILL.md does not list network as a declared permission. However, this is inherently required by the stated trading purpose and carries zero exfiltration risk -- the network calls are only to Polymarket's own API endpoints for the bot's normal operation. `Documentation describes trading behavior but omits network:READ` → Add 'network: READ' to the allowed-tools mapping in the capability declaration, noting it is used exclusively for Polymarket API calls via simmer-sdk.	`SKILL.md:1`

Resource	Declared	Inferred	Status	Evidence
Filesystem	`NONE`	`NONE`	—	trader.py: No file open/creation calls
Network	`NONE`	`READ`	✓ Aligned	trader.py: SimmerClient from simmer-sdk makes outbound API calls to Polymarket (…
Shell	`NONE`	`NONE`	—	trader.py: No subprocess, os.system, or shell command invocation
Environment	`READ`	`READ`	✓ Aligned	trader.py:29-37 reads SIMMER_API_KEY and tuning params from os.environ -- declar…
Skill Invoke	`NONE`	`NONE`	—	No inter-skill invocation
Clipboard	`NONE`	`NONE`	—	No clipboard access
Browser	`NONE`	`NONE`	—	No browser automation
Database	`NONE`	`NONE`	—	No database access

File Tree

3 files · 23.3 KB · 629 lines

Python 1f · 446L Markdown 1f · 96L JSON 1f · 87L

├─ 📋 clawhub.json JSON 87L · 1.8 KB

├─ 📝 SKILL.md Markdown 96L · 5.8 KB

└─ 🐍 trader.py Python 446L · 15.7 KB

Dependencies 1 items

Package	Version	Source	Known Vulns	Notes
`simmer-sdk`	`*`	pip	No	Version not pinned; PyPI package from SpartanLabsXyz -- no known vulnerabilities detected, but pinning to a specific version is recommended for supply-chain hygiene

Security Positives

✓ Paper trading (venue=sim) is the default; --live flag is required for real trades

✓ No subprocess, shell execution, or os.system calls anywhere in the codebase

✓ No sensitive path access (~/.ssh, ~/.aws, .env, /etc/passwd)

✓ No base64, eval, exec, or code obfuscation of any kind

✓ No credential exfiltration -- SIMMER_API_KEY is used only locally with the SimmerClient

✓ SIMMER_API_KEY requirement is clearly declared in SKILL.md Required Credentials section

✓ All trading logic (signal, safeguards, execution) is straightforward and readable

✓ No hidden instructions, no C2 communication, no data theft

✓ Uses a known, published SDK (simmer-sdk) from PyPI/GitHub with no modification

✓ No dependency on unpinned external scripts or curl|bash patterns

✓ Environment variables read (tuning params) are standard tunables with safe defaults

✓ No automaton autostart or cron configured -- explicit human invocation required

Scan Report

Findings 1 items

File Tree

Dependencies 1 items

Security Positives