polymarket
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill employs a script-first architecture where the agent executes shell commands to run local Python scripts (e.g.,
scripts/search.py,scripts/prepare_order.py) for market interaction. - [SAFE]: Sensitive Polymarket API credentials (API_KEY, SECRET, PASSPHRASE) are derived from user-authorized EIP-712 signatures via the
wallet_sign_typed_datatool and stored in the workspace's.envfile, following secure secret management practices. - [SAFE]: The skill implements automated VPN proxy detection using internal infrastructure (
sc-vpn.internal) to handle geo-restrictions on the Polymarket CLOB API. - [SAFE]: Network activity is confined to verified Polymarket infrastructure including the CLOB, Gamma, and Data APIs.
Audit Metadata