polymarket-sync-markets
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface. The skill ingests untrusted market titles and descriptions from the Polymarket Gamma API. \n
- Ingestion points: Market titles and outcomes are retrieved via the
polymarketconnector and processed inSKILL.md. \n - Boundary markers: None; the data is mapped and stored without delimiters or 'ignore' instructions for downstream agents. \n
- Capability inventory: The skill is limited to data storage (
bulk-save) and does not possess high-privilege capabilities likeexec,eval, or system command execution. \n - Sanitization: No explicit sanitization or filtering of API-sourced strings is described in the workflow. \n- [DATA_EXFILTRATION] (LOW): The skill performs network requests to
clob.polymarket.comto fetch pricing and order book data. While necessary for the skill's primary purpose, these are non-whitelisted domains. No access to sensitive local files or credentials was detected.
Audit Metadata