polymarket

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to capture and embed returned client-id/session-id (and references ROBOMOTION_API_TOKEN) verbatim into subsequent CLI commands, requiring the LLM to handle and output secret/session tokens directly.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to connect to Polymarket APIs and retrieve public market listings, events, orderbooks, trades and positions (user-generated/public content) which the agent is expected to read and use for analytics or trading decisions, so third-party content could influence its actions.