Polymarket
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves market data from gamma-api.polymarket.com and clob.polymarket.com, which are the official public API endpoints for Polymarket.\n- [COMMAND_EXECUTION]: The skill executes the polymarket.mjs script locally to query and format prediction market odds. The script uses standard Node.js practices and handles user arguments safely.\n- [PROMPT_INJECTION]: The skill handles data from an external source (Polymarket events and descriptions). This creates a potential indirect prompt injection surface; however, the skill only displays the information and has no capabilities to execute commands or modify files based on the retrieved content.
Audit Metadata