Skip to main content

copy-trading

Enables users to automatically copy trades from successful wallets on Polymarket, enhancing trading strategies with configurable settings.

Install this skill

or
0/100

Security score

The copy-trading skill was audited on Feb 19, 2026 and we found 25 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 160

Template literal with variable interpolation in command context

SourceSKILL.md
160console.log(`Copied ${event.side} on ${event.market}`);
medium line 161

Template literal with variable interpolation in command context

SourceSKILL.md
161console.log(`Original: $${event.originalSize}, Copied: $${event.copiedSize}`);
medium line 165

Template literal with variable interpolation in command context

SourceSKILL.md
165console.log(`Stop-loss hit on ${event.market}`);
medium line 166

Template literal with variable interpolation in command context

SourceSKILL.md
166console.log(`Loss: $${event.loss}`);
medium line 170

Template literal with variable interpolation in command context

SourceSKILL.md
170console.log(`Take-profit hit on ${event.market}`);
medium line 171

Template literal with variable interpolation in command context

SourceSKILL.md
171console.log(`Profit: $${event.profit}`);
medium line 175

Template literal with variable interpolation in command context

SourceSKILL.md
175console.log(`Limit reached: ${event.type}`);
medium line 190

Template literal with variable interpolation in command context

SourceSKILL.md
190console.log(`Following: ${status.followedCount} wallets`);
medium line 191

Template literal with variable interpolation in command context

SourceSKILL.md
191console.log(`Today's P&L: $${status.dailyPnl}`);
medium line 192

Template literal with variable interpolation in command context

SourceSKILL.md
192console.log(`Active positions: ${status.activePositions}`);
medium line 210

Template literal with variable interpolation in command context

SourceSKILL.md
210console.log(`${trader.address}`);
medium line 211

Template literal with variable interpolation in command context

SourceSKILL.md
211console.log(` Win rate: ${(trader.winRate * 100).toFixed(1)}%`);
medium line 212

Template literal with variable interpolation in command context

SourceSKILL.md
212console.log(` Volume: $${trader.totalVolume.toLocaleString()}`);
medium line 213

Template literal with variable interpolation in command context

SourceSKILL.md
213console.log(` P&L: $${trader.pnl.toLocaleString()}`);
medium line 214

Template literal with variable interpolation in command context

SourceSKILL.md
214console.log(` Trades: ${trader.tradeCount}`);
medium line 223

Template literal with variable interpolation in command context

SourceSKILL.md
223console.log(`Win rate: ${analysis.winRate}%`);
medium line 224

Template literal with variable interpolation in command context

SourceSKILL.md
224console.log(`Avg trade size: $${analysis.avgTradeSize}`);
medium line 225

Template literal with variable interpolation in command context

SourceSKILL.md
225console.log(`Best market: ${analysis.bestMarket}`);
medium line 226

Template literal with variable interpolation in command context

SourceSKILL.md
226console.log(`Worst market: ${analysis.worstMarket}`);
medium line 227

Template literal with variable interpolation in command context

SourceSKILL.md
227console.log(`Avg hold time: ${analysis.avgHoldTime} hours`);
medium line 228

Template literal with variable interpolation in command context

SourceSKILL.md
228console.log(`Sharpe ratio: ${analysis.sharpeRatio}`);
low line 82

Access to .env file

SourceSKILL.md
82apiKey: process.env.POLY_API_KEY,
low line 83

Access to .env file

SourceSKILL.md
83apiSecret: process.env.POLY_API_SECRET,
low line 84

Access to .env file

SourceSKILL.md
84passphrase: process.env.POLY_API_PASSPHRASE,
low line 85

Access to .env file

SourceSKILL.md
85privateKey: process.env.PRIVATE_KEY,
Scanned on Feb 19, 2026
View Security Dashboard

Install this skill with one command

/learn @alsk1992/copy-trading
GitHub Stars 53
Rate this skill
Categorymarketing
UpdatedMarch 29, 2026
openclawapigrowth-marketerproduct-marketermarketing-analystmarketing
alsk1992/CloddsBot