polymarket-trading

Warn

Audited by Socket on Jun 23, 2026

2 alerts found:

SecurityAnomaly
SecurityMEDIUM
SKILL.md
AnomalyLOW
credentials/example.json

This JSON is a credentials/configuration file that contains placeholders for sensitive secrets (private key and API credentials). The file itself is not executable or directly malicious, but storing real secrets here in plaintext is a significant supply-chain and operational security risk: if these values are populated and the file is committed, leaked, or read by an attacker, they enable account compromise and theft. Treat this file as high-sensitivity material; do not commit to source control, use secret management, and rotate keys if they were exposed.

Confidence: 90%Severity: 65%
Audit Metadata
Analyzed At
Jun 23, 2026, 06:09 AM
Package URL
pkg:socket/skills-sh/storyclaw-official%2Fstoryclaw-assistant%2Fpolymarket-trading%2F@55ce1af47a79d83890ea37177c3ebbb0b350fba61a0eb45481deb157daff7a38
Security Audit — socket — polymarket-trading