API key walkthrough

Get connected without guessing.

This is the calm version: open the right screen, create a key or credential, copy it once, and paste it into Zavit. Start with read-only permissions when the venue offers them. You can revoke keys later from the exchange.

Kalshi

Create a Kalshi API key, then copy the private key while it is visible.

Kalshi’s official API docs describe API keys as credentials you can generate and manage. If the app labels move, search account settings for “API keys,” “Developer,” or “Credentials.”

On your phone

5 MIN
  1. Open account settings.

    Open Kalshi, tap your profile or account menu, then look for API keys, Developer, or Security.

    Screenshot placeholder: Kalshi mobile account menu
  2. Create a new key.

    Choose the lowest permission level that works. If read-only is offered, start there.

    Screenshot placeholder: mobile API key creation screen
  3. Copy and store it once.

    Kalshi-generated private keys may only be shown once. Copy the key, save it in your password manager, then paste it into Zavit when prompted.

On the web

4 MIN
  1. Sign in on desktop.

    Go to Kalshi in a browser, sign in, and open account settings from the profile menu.

    Screenshot placeholder: Kalshi web profile menu
  2. Open API keys.

    Use the API keys or Developer area to generate a new credential. Give it a clear name, such as “Zavit read-only.”

    Screenshot placeholder: web API keys table
  3. Paste into Zavit.

    Copy the key ID and private key exactly as shown. Do not email it to yourself or paste it into a note app.

If Kalshi shows a permission selector, start with read-only data access. Trading permissions can be added later only if you intentionally enable execution inside Zavit.

Polymarket

Polymarket credentials are wallet-based, so the safe path starts with the wallet you already use.

Polymarket’s docs say public market data does not need authentication, while authenticated trading uses wallet-derived CLOB credentials. For a non-technical setup, follow the account UI if API keys are exposed there; otherwise use the web path and keep the wallet prompt visible.

On your phone

5 MIN
  1. Open Polymarket from your wallet-ready browser.

    Use the same phone browser or wallet app you use to sign in. Confirm the account address is the one you want Zavit to read.

    Screenshot placeholder: Polymarket mobile wallet/account screen
  2. Look for developer credentials.

    Open profile settings and look for API keys, Developer, or Credentials. If the option is not present on mobile, switch to the web path.

    Screenshot placeholder: mobile profile/settings search
  3. Approve only the expected prompt.

    For wallet-derived credentials, read the wallet prompt before signing. Do not approve a transfer or spend prompt when all you need is account access.

On the web

6 MIN
  1. Connect the correct wallet.

    Open Polymarket on desktop, connect your wallet, and verify the address before continuing.

    Screenshot placeholder: Polymarket web wallet connection
  2. Create or derive credentials.

    If Polymarket exposes API credentials in settings, generate them there. If you are using the developer flow, derive CLOB credentials from the wallet signer as described in the official quickstart.

    Screenshot placeholder: credentials or wallet signature prompt
  3. Bring only the credential into Zavit.

    Zavit should not need your seed phrase. Never paste a wallet seed phrase, recovery phrase, or raw private key into a web form.

Polymarket setup can look different by wallet type. Pause if the prompt asks to move funds, approve spending, or reveal a secret phrase. That is not the same as connecting a read credential.

Last checked against official docs: July 2, 2026.Kalshi docs · Polymarket quickstart
Back in Zavit

Paste the key into the onboarding step only when you know what it does.

This is the same affordance shown on the landing: the help link stays next to the field, because nobody should have to leave onboarding and hunt for instructions.