Competitive Intel
v1.0.0Comprehensive competitive intelligence system covering market mapping, product teardowns, pricing analysis, win/loss insights, battlecards, and strategic com...
⭐ 0· 603·1 current·1 all-time
by@1kalin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (competitive intelligence, market mapping, teardowns, pricing, battlecards) match the SKILL.md and README content. The skill requests no binaries, env vars, or installs — which is proportionate for a research/template-driven capability.
Instruction Scope
The SKILL.md is a detailed research playbook that tells an agent to gather public signals (Google, G2, Product Hunt, Crunchbase, LinkedIn, Reddit/HN, Wappalyzer/BuiltWith) and to use internal sources such as customer interview notes and lost-deal notes. This is within the purpose, but it implies the agent will be asked to ingest internal documents and possibly perform web scraping; users should be aware that internal notes may contain sensitive PII and that scraping some third-party sites can violate terms of service.
Install Mechanism
No install spec, no code files, no downloads — lowest-risk install footprint.
Credentials
No environment variables, credentials, or config paths are requested. The SKILL.md does reference third-party services to research but does not ask for unrelated secrets or credentials.
Persistence & Privilege
always is false and the skill does not request persistent system presence or modify other skills. Autonomous invocation is allowed by platform default and is not combined here with other red flags.
Assessment
This is a templates-and-playbook skill for open-source intelligence and teardown workflows — technically coherent and low-risk because it contains no install, code, or credential requests. Before installing or using it: (1) verify the author/source if provenance matters to you (the registry metadata lists an opaque owner ID and no homepage), (2) do not feed sensitive internal documents (customer PII, contracts, or lost-deal notes) to the skill unless you have sanitized them and understand how the agent will store/use them, (3) be cautious about automated web scraping of sites like G2, Crunchbase, or LinkedIn — check terms of service and rate limits, and prefer manual pulls or official APIs where available, and (4) if you need the agent to collect screenshots or access internal systems, constrain its permissions or run it in a monitored/sandboxed environment. If you want higher assurance, ask the publisher for provenance (who maintains the skill, link to homepage/repo) and confirm there are no hidden install steps or external endpoints before wider deployment.Like a lobster shell, security has layers — review code before you run it.
automationvk973nm8tqjk24zpcsczk5bt92x81527jbusinessvk973nm8tqjk24zpcsczk5bt92x81527jlatestvk973nm8tqjk24zpcsczk5bt92x81527j
License
MIT-0
Free to use, modify, and redistribute. No attribution required.