polymarket

SUSPICIOUS. The trading purpose broadly matches the capabilities, but the actual footprint is disproportionate: it installs an unverifiable binary from a different publisher than the declared source, forwards trading credentials to that binary, installs extra skills transitively, and sends device-fingerprinting telemetry to third-party endpoints. Because an unverifiable binary receives credentials, this is high security risk even without proof of outright malware.