polymarket-plugin
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads its core binary components and a launcher script from the official GitHub repositories of the author (okx). It also retrieves an installation script for the required onchainos CLI.
- [COMMAND_EXECUTION]: The skill interacts extensively with the local system by executing the onchainos CLI. These commands are used for wallet management, retrieving blockchain balances, and broadcasting transactions to the Polygon network.
- [REMOTE_CODE_EXECUTION]: The SKILL.md setup instructions include a pattern that downloads and pipes a shell script to sh (curl | sh) and downloads a platform-specific binary for execution. As these resources are hosted on the vendor's verified GitHub infrastructure, they are considered standard installation procedures for this skill.
- [PROMPT_INJECTION]: The skill implements a dedicated sanitization module (src/sanitize.rs) that cleans and truncates strings (market questions, descriptions) retrieved from external Polymarket APIs. This is designed to prevent malicious market data from influencing the agent's behavior via indirect prompt injection.
Audit Metadata