Scan Report
5 /100
polymarket-macro-fear-index-trader
Builds a custom fear index from Polymarket markets and trades overreactions during panic or complacency regimes
A legitimate Polymarket trading skill that aggregates fear-index signals and executes trades via the Simmer SDK, with paper-trading safe defaults and no suspicious behavior.
Safe to install
No action required. The skill is safe to use. Only grant shell:WRITE if the Simmer runtime requires it for process management.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | trader.py:all - No file read/write operations found |
| Network | NONE | READ/WRITE | ✓ Aligned | trader.py:130 - Uses SimmerClient from simmer-sdk for API calls |
| Shell | NONE | NONE | — | trader.py - No subprocess/os.system/shell calls |
| Environment | READ | READ | ✓ Aligned | trader.py:62-79 - Reads SIMMER_API_KEY and SIMMER_* tunables as documented |
| Skill Invoke | NONE | NONE | — | No recursive skill invocation |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | NONE | — | No database access |
1 findings
Info Email 邮箱地址
[email protected] SKILL.md:144 File Tree
3 files · 30.7 KB · 829 lines Python 1f · 556L
Markdown 1f · 146L
JSON 1f · 127L
├─
clawhub.json
JSON
├─
SKILL.md
Markdown
└─
trader.py
Python
Dependencies 1 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
simmer-sdk | * | PyPI | No | Not version-pinned; published by [email protected] |
Security Positives
✓ Paper-trading safe default (venue=sim) prevents accidental real trades
✓ Explicit --live flag required for live Polymarket trading
✓ All capabilities align with SKILL.md documentation -- no doc-code mismatch
✓ No shell execution, obfuscation, or credential harvesting beyond the declared API key
✓ Flip-flop and slippage safeguards via client.get_market_context()
✓ Spread and liquidity gates prevent trading on illiquid markets
✓ Risk parameters (max position, min volume) are tunable and declared
✓ No sensitive path access (no ~/.ssh, ~/.aws, .env file reading)
✓ Clean codebase with no base64, no eval(), no hidden instructions
✓ Simmer SDK is a legitimate published PyPI package from known publisher