polymarket-elon-tweets
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by ingesting untrusted data from an external source to drive automated financial actions. Malicious data from the external API could potentially influence the bot to execute unintended or disadvantageous trades.
- Ingestion points: Fetches tracking statistics and pace projections from the XTracker API (xtracker.polymarket.com) in elon_tweets.py.
- Boundary markers: No cryptographic verification or integrity checks are performed on the external API response before processing.
- Capability inventory: The skill is capable of executing live financial trades and managing wallet positions via the simmer-sdk.
- Sanitization: The skill performs basic numeric parsing and range extraction using regular expressions but otherwise trusts the logic signals provided by the external source.
- [COMMAND_EXECUTION]: The skill requires running Python scripts for configuration, account monitoring, and execution (elon_tweets.py and scripts/status.py). It also manages local state by writing to state/failed_trades.json.
- [EXTERNAL_DOWNLOADS]: The skill depends on the installation of the simmer-sdk package from the public Python registry (PyPI) to facilitate interaction with the Simmer API.
- [DATA_EXFILTRATION]: The skill transmits trade requests, market metadata, and portfolio balance information to the vendor's API (api.simmer.markets). This is the intended operation of the trading bot.
Audit Metadata