polymarket-weather-trader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and parses live market data from public sources (discover_and_import_weather_markets / fetch_weather_markets calling Simmer/Polymarket importable markets and market records, and parsing event_name/outcome_name in weather_trader.py) — these are user-generated, third‑party market titles/outcomes that the agent reads and uses to decide trades, so untrusted content can materially influence actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed to execute real trades. It requests a Simmer API key and a WALLET_PRIVATE_KEY for live trading, states the SDK uses the private key to sign orders client-side, and provides commands and flags to "Execute real trades" (python weather_trader.py --live). The workflow includes explicit BUY/SELL steps, position sizing, slippage checks, max position limits, and portfolio/positions API endpoints. It also references USDC on Polygon and signing transactions—i.e., direct crypto wallet transaction signing and market order execution. These are specific financial execution capabilities (crypto/blockchain wallet signing and market orders), not generic tooling.