AI Product Comparison Skill

What to check before installing or running this skill: - The skill requires a Zyte API key (ZYTE_API_KEY) to work, but the registry metadata did not declare that; verify you are prepared to provide that credential and understand the billing/costs on Zyte for extractions. - The fetch script examples pass the API key as a command-line argument, which can expose the key via operating-system process listings. Prefer running the code in an isolated environment or modify the script to read the API key only from an environment variable or a protected config file if you are concerned about local exposure. - The scripts write raw Zyte responses to /tmp/product_*.json — these files can contain scraped product data and potentially other scraped text; ensure /tmp is acceptable for temporary storage and that you or the agent will clean up sensitive artifacts. - The README includes a troubleshooting command that overwrites /etc/resolv.conf. Do not run that unless you understand the implications and have appropriate privileges — it is unrelated to the skill's core functionality and can have system-wide effects. - Source provenance: the registry lists 'source: unknown' and no homepage. If you rely on third-party code, prefer skills with a clear repository or vendor homepage; if unsure, review the included scripts yourself or run them in a sandboxed environment before granting the agent runtime code execution privileges. If you trust Zyte and are comfortable providing the API key, the code itself appears consistent with the stated purpose. If you need stronger assurance, ask the publisher to update registry metadata to declare ZYTE_API_KEY as a required credential, to avoid passing keys on the command line, and to provide a canonical source/homepage for provenance.