polymarket

SUSPICIOUS: The stated purpose matches prediction-market research and trading, but the execution path is an unverified intermediary backend that receives an OpenFinance API key, derives/caches Polymarket credentials server-side, and can perform financially consequential actions. No malware or installer evidence is present, but the credential routing, opaque backend trust, and autonomous trading capability make this a high security-risk skill.