Skillv1.0.1

ClawScan security

ozon-product-selection · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 23, 2026, 10:07 AM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill's functionality (searching 1688 via AlphaShop for Ozon product selection) is coherent, but the registry metadata omits required secret environment variables and the package claims an 'official' author with no homepage — these mismatches warrant caution before installing or providing keys.
Guidance: This skill appears to do what it says (search Ozon market trends, produce Chinese keywords, call AlphaShop/1688 APIs and return supplier/SKU info). Before installing or providing secrets: 1) Note the registry metadata does NOT list the required ALPHASHOP_ACCESS_KEY / ALPHASHOP_SECRET_KEY though SKILL.md and the script need them — verify this mismatch with the skill publisher. 2) Confirm the publisher (the SKILL.md claims '1688官方技术团队') and prefer skills with a verifiable homepage or contact. 3) Only provide AlphaShop keys that are scoped/minimal and from an account you control; treat them as secrets. 4) Expect network calls to api.alphashop.cn and external web search; ensure you are comfortable with that outbound traffic and any billing/credit usage on AlphaShop. 5) Consider testing with a low-privilege or sandbox AlphaShop account and review the returned data before automating further actions (e.g., pushing products to Ozon). If you need higher assurance, ask the publisher for provenance, a homepage, or a signed release and for the skill metadata to be corrected to declare required env vars.

Review Dimensions

Purpose & Capability: concernThe skill's stated purpose (find Ozon-oriented product opportunities by calling 1688 via AlphaShop) matches what the code and SKILL.md do: web searches, AI keyword extraction, and calling AlphaShop search/detail APIs. However, the registry metadata claims no required env vars or primary credential, whereas SKILL.md and scripts require ALPHASHOP_ACCESS_KEY and ALPHASHOP_SECRET_KEY. The missing declaration in metadata (and absence of a homepage/source provenance) is an incoherence.
Instruction Scope: okSKILL.md instructions are specific and scoped to the described task: perform web searches, generate 5–8 keywords, call the provided script for each keyword, apply filters, and format results. It does not instruct reading unrelated local files or harvesting other credentials. It does require asking the user for AlphaShop keys if not provided.
Install Mechanism: noteThere is no formal install spec (instruction-only), but the package includes a Python script and requirements.txt (requests, PyJWT). That is low risk, but the absence of installation guidance in SKILL metadata (e.g., how/when dependencies are installed) means the runtime will need a Python environment with those libs available; this is a usability/operational omission rather than malicious behavior.
Credentials: concernThe actual runtime requires two secrets: ALPHASHOP_ACCESS_KEY and ALPHASHOP_SECRET_KEY, which are directly used to create a JWT and call AlphaShop APIs. These credentials are proportionate to the skill's purpose, but the skill registry metadata failed to declare them (required env vars and primary credential are absent). Requiring secret keys is expected, but the metadata mismatch and the lack of provenance/contact info increase risk — verify keys scope and store them securely.
Persistence & Privilege: okThe skill does not request permanent/always-on presence (always:false) and does not modify other skills or system-wide config. It only uses environment variables at runtime and makes outbound requests to AlphaShop and web search — expected for this functionality.