ad-intelligence-skill

This skill appears to do what it says (collect ad creatives via scraping and paid APIs), but there are several red flags to resolve before installing or giving it secrets: 1) Metadata omits required tools and secrets — Phase 1/2 code needs Python packages and Playwright/browser binaries, and Phase 2 needs multiple API keys (SERPAPI, Apify, Adyntel, ScrapeCreators, Meta Graph access token). Ask the skill author to declare required env vars and an install spec. 2) Do not paste high-privilege tokens (long-lived Facebook access tokens, service API keys) into the agent until you confirm where they are stored and how they will be used; prefer creating scoped keys with minimal permissions. 3) Scraping reverse-engineered internal APIs (Google internal endpoints) and headless browser automation can violate platform TOS and lead to IP blocking or account actions — consider legal/terms-of-service risk. 4) Run this skill in an isolated environment (sandbox) if you need to test, and limit network/credential exposure (use limited-scope API keys, proxies, and monitoring). 5) Request from the publisher: an explicit install section listing required packages/binaries, a clear list of all environment variables the skill will request, and a data-handling statement describing whether/where keys or scraped data are transmitted or stored. Only proceed after those clarifications and after minimizing the privileges of any provided credentials.