Settings
What are these creds?
Polymarket L2 API credentials (key · secret · passphrase), minted by ONE EIP-712 “ClobAuth” signature. They authenticate reads of your own orders/fills, cancels and balance refreshes. They can NOT move funds and can NOT place orders by themselves — every order carries a separate EIP-712 signature from your wallet.
Storage: AES-256-GCM in this browser’s IndexedDB. The encryption key is derived (HKDF) from a deterministic local signature of “Smart Terminal Vault v1” — it never leaves the page, and the server never sees any of this. Clearing the vault only forgets the local copy; re-derive restores the same key.
Off by default. When enabled, this browser pushes a sanitized snapshot of your OPEN orders (ids, prices, sizes — never credentials or signatures) to your Smart Terminal account so server-side features (AI context, cross-device views) can see them. Revoking stops writes immediately.
setup incomplete? run onboarding →