ClawHub

Amazon Daily Market Radar

v1.0.1

Automated daily market monitoring and alert system for Amazon sellers. Tracks price changes, new competitors, BSR movements, review spikes, stock-out signals...

0· 68·0 current·0 all-time
by@apiclaw
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Amazon market monitoring) align with required env var (APICLAW_API_KEY), the README, SKILL.md, and scripts reference APIClaw endpoints and market/product/review data — all expected for this purpose.
Instruction Scope
Runtime instructions tell the agent to run a radar CLI and to read/write local snapshots under {skill_base_dir}/data/ (watchlist.json, last-run.json) which is reasonable for stateful monitoring. Minor inconsistency: SKILL.md references a 'daily-radar' command but the included script is apiclaw.py (the README shows npx install); ensure the runtime maps the CLI name to the provided script before running.
Install Mechanism
No install spec included (instruction-only skill). A single Python script is bundled; nothing is downloaded from untrusted URLs and no install-time downloads are required by the skill metadata.
Credentials
Only APICLAW_API_KEY is required (declared as primaryEnv). The code will also optionally read a local config.json in the skill directory for the same key — that is within the skill's folder and proportional to its function. No unrelated secrets or cloud credentials requested.
Persistence & Privilege
Skill is not always-on and may be invoked by the agent; it writes state under its own skill directory (last-run.json) which is appropriate for a monitoring skill. It does not request system-wide configuration changes or other skills' credentials.
Assessment
This skill appears coherent with its stated purpose, but before installing: 1) Verify the APICLAW_API_KEY provider (https://apiclaw.io) and any plan/credit implications; 2) Confirm how your agent maps the 'daily-radar' command to the provided apiclaw.py script (or follow the README npx install flow); 3) Review the included apiclaw.py and README on the GitHub homepage to ensure you trust the source (the skill will store baseline/last-run JSON files under its skill directory and will make network calls to api.apiclaw.io using your API key); 4) Limit the API key scope and rotate it if you later uninstall the skill; 5) If you need higher assurance, run the script in an isolated environment first (or inspect the full script) to confirm no unexpected network endpoints or data exfiltration beyond the documented APIClaw endpoints.

Like a lobster shell, security has layers — review code before you run it.

latestvk977z7rzxefz822m67s9pa5qm984spjp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvAPICLAW_API_KEY
Primary envAPICLAW_API_KEY

Comments