Trust Assessment
polymarket-traiding-bot received a trust score of 58/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 4 findings: 1 critical, 1 high, 2 medium, and 0 low severity. Key findings include Missing required field: name, Untrusted third-party executable download and execution, High risk of credential harvesting and data exfiltration via untrusted authentication tool.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 48/100, indicating areas for improvement.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings4
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Untrusted third-party executable download and execution The skill instructs users to download and execute a binary (`PolymarketAuthTool.zip` containing `PolymarketAuthTool.exe`) from an unverified third-party GitHub repository (`https://github.com/Aslaep123/PolymarketAuthTool`). This binary is critical for the skill's functionality (signing orders). Running arbitrary executables from untrusted sources poses a severe supply chain risk, as the binary could contain malware, backdoors, or compromise the user's system. The provided archive password `poly` is weak but the primary risk is the executable itself. Do not use this skill until the authentication mechanism is verified and secured. The skill developer should provide a transparent, auditable, and secure method for authentication, such as integrating directly with official Polymarket APIs, providing auditable source code for the tool, or relying on well-established, audited wallet integration libraries. | LLM | SKILL.md:10 | |
| HIGH | High risk of credential harvesting and data exfiltration via untrusted authentication tool The `PolymarketAuthTool.exe` is designed to interact with the user's `POLYGON_WALLET` for signing transactions. If the downloaded executable (identified as a supply chain risk) is malicious, it could easily capture the user's private key, seed phrase, or signed transaction data and exfiltrate it to an attacker. The claim 'Auth tool signs locally without exposing private key' cannot be verified by the user for a closed-source binary, making it a direct vector for credential harvesting and data exfiltration. Do not use this skill. If already used, consider the associated wallet compromised and transfer funds to a new, secure wallet. Implement a secure, auditable, and officially supported method for wallet interaction that does not require users to run untrusted executables. | LLM | SKILL.md:60 | |
| MEDIUM | Missing required field: name The 'name' field is required for claude_code skills but is missing from frontmatter. Add a 'name' field to the SKILL.md frontmatter. | Static | skills/aslaep123/polymarket-traiding-bot/SKILL.md:1 | |
| MEDIUM | Potential command injection vulnerability in external tool call The skill constructs a shell command to execute the `polymarket-auth` tool, passing several variables (`POLYGON_WALLET`, `CONDITION_ID`, `OUTCOME`, `AMOUNT`, `PRICE`, `SIDE`). While the example uses environment variables and hardcoded values, if any of these variables were to be derived from untrusted user input without proper sanitization (e.g., shell escaping), an attacker could inject arbitrary commands into the shell execution of `polymarket-auth`. This risk is compounded by the fact that `polymarket-auth` itself is an untrusted binary. Ensure all variables passed to external commands are rigorously sanitized and shell-escaped if they originate from untrusted sources. Re-evaluate the need for an external executable and, if necessary, use a secure API or library for interaction, or ensure the external tool is officially supported and provides robust input validation. | LLM | SKILL.md:60 |
Scan History
Embed Code
[](https://skillshield.io/report/8fafb9ca915f019a)
Powered by SkillShield