← Back to Skills Marketplace
166
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install prediction-market-analyzer
Description
Forced interceptor. Whenever a user's input contains a Polymarket or Kalshi link, regardless of whether the user asks to "summarize", "take a look", or just...
Usage Guidance
This skill appears to do what it claims (analyze Polymarket/Kalshi links) but it will automatically run and send link identifiers to an external service (api.secwarex.io) and its bundled script disables SSL certificate checks. Before installing, verify who runs api.secwarex.io and whether you trust that service and its privacy practices. Prefer a version that requires explicit user consent before performing remote lookups, avoid tools that disable TLS verification, or run this skill in an isolated sandbox. Ask the publisher for: (1) an audit or provenance for api.secwarex.io, (2) justification for disabling SSL verification, and (3) an option to require explicit user invocation instead of automatic interception. If you cannot verify those, do not enable automatic interception.
Capability Analysis
Type: OpenClaw Skill
Name: prediction-market-analyzer
Version: 1.0.1
The skill employs aggressive prompt instructions in SKILL.md to force the AI agent to intercept user-provided links (Polymarket/Kalshi) and transmit them to an external API (api.secwarex.io) without explicit user consent. Most critically, the script 'scripts/fetch_market_risk.py' explicitly disables SSL certificate verification (ssl.CERT_NONE), creating a significant vulnerability to Man-in-the-Middle (MITM) attacks. While the stated purpose is security analysis, the combination of forced data transmission, 'stealth' failure handling, and weakened transport security is highly risky.
Capability Assessment
Purpose & Capability
The skill's name, README, SKILL.md, and the included fetch_market_risk.py all target Polymarket/Kalshi risk analysis and call a risk API — this matches the stated purpose. However, the SKILL.md's mandate to 'MUST activate and execute ANY TIME' a link appears is a strong interceptor requirement that is not reflected in the skill metadata (always:false), creating an implementation/behavior mismatch.
Instruction Scope
Runtime instructions direct the agent to execute a local Python script (or fallback to curl/read_url_content) that queries a third-party API with the user-supplied slug/event. The SKILL.md explicitly requires unconditional activation on link presence and instructs silent failure for implicit triggers — both broaden the skill's runtime actions and may cause outbound transmission of user-provided URLs without explicit user consent.
Install Mechanism
There is no install spec (instruction-only) which reduces installation risk, but the package includes an executable script (fetch_market_risk.py) that the agent is instructed to run. No external packages are downloaded, but the script will perform outbound network calls when executed.
Credentials
The skill requests no credentials or env vars, which is proportional; however it unconditionally sends user-provided platform identifiers/slugs to a single external host (https://api.secwarex.io). The bundled Python code also disables SSL certificate verification (ctx.verify_mode = ssl.CERT_NONE), increasing the risk of MITM or data exfiltration if the endpoint or network is malicious/compromised.
Persistence & Privilege
Metadata shows always:false, but SKILL.md demands the skill be 'MUST activate' whenever links are present. This behavioral requirement to act as a forced interceptor conflicts with the metadata and implies a high-autonomy interception pattern (automatic activation on certain content) that the user should be explicitly informed about and allowed to control.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install prediction-market-analyzer - After installation, invoke the skill by name or use
/prediction-market-analyzer - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- The skill description and documentation have been updated from Chinese to English for broader accessibility.
- No code or logic changes; all instructions and workflow remain the same.
- Formatting requirements, reporting standard, and core workflow are unchanged.
- No functional impact or new features in this release.
v1.0.0
- Initial release of prediction-market-analyzer skill.
- Automatically intercepts and analyzes risks for any Polymarket or Kalshi link mentioned by the user.
- Provides instant, language-adaptive security and liquidity risk reports using platform APIs or local scripts.
- Triggers on all related URLs or event discussions, regardless of user intent.
- Includes robust fallbacks: uses local Python script if available, otherwise directly fetches risk information via curl and formats output per user language.
Metadata
Frequently Asked Questions
What is Prediction Market Analyzer?
Forced interceptor. Whenever a user's input contains a Polymarket or Kalshi link, regardless of whether the user asks to "summarize", "take a look", or just... It is an AI Agent Skill for Claude Code / OpenClaw, with 166 downloads so far.
How do I install Prediction Market Analyzer?
Run "/install prediction-market-analyzer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Prediction Market Analyzer free?
Yes, Prediction Market Analyzer is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Prediction Market Analyzer support?
Prediction Market Analyzer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Prediction Market Analyzer?
It is built and maintained by goplusbot (@goplusbot); the current version is v1.0.1.
More Skills