Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Amazon Ads CLI
v1.0.0Amazon Ads data retrieval and reporting via amazon-ads-open-cli. Use when the user wants to check Amazon ad performance, pull Sponsored Products/Brands/Displ...
⭐ 0· 46·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill's stated purpose (interacting with Amazon Advertising API) legitimately requires OAuth credentials and a profile ID. However, the registry metadata lists no required environment variables or primary credential while the SKILL.md documents AMAZON_ADS_ACCESS_TOKEN, AMAZON_ADS_CLIENT_ID, and AMAZON_ADS_PROFILE_ID plus an on-disk credentials file. The absence of these declared requirements in metadata is an inconsistency.
Instruction Scope
The SKILL.md instructs the agent to run the amazon-ads-open-cli commands and to read credentials from ~/.config/amazon-ads-open-cli/credentials.json or environment variables. The instructions stay within the advertised domain (listing campaigns, profiles, reports) and do not ask for unrelated system files, but they do direct reading of a user config file and use of OAuth tokens (sensitive).
Install Mechanism
There is no install spec in the skill bundle; SKILL.md tells users to run `npm install -g amazon-ads-open-cli`. Installing an npm package globally is a reasonable way to obtain a CLI, but it carries the normal risk of executing third-party code from the npm registry. The skill bundle itself does not provide a vetted install artifact or homepage to verify the package source.
Credentials
The runtime requires sensitive credentials (OAuth access token and client ID, plus a profile ID) but the skill metadata declares none. That mismatch hides the need for secrets from the metadata surface. Requesting these credentials is proportionate to the skill's purpose, but the lack of explicit declaration is a transparency and security concern.
Persistence & Privilege
The skill is not always-enabled and does not request system-wide persistence or modifications to other skills. Model invocation is allowed (default) but that is expected for user-invokable skills.
What to consider before installing
This skill appears to be a thin wrapper around an Amazon Ads CLI and will need your Amazon OAuth access token, client ID, and a profile ID (either via a credentials JSON or environment variables). The registry metadata does not declare these requirements — ask the publisher to declare required env vars. Before installing or using it: 1) Verify the npm package (amazon-ads-open-cli) source and author on npm/github; prefer an official or well-known repository. 2) If you must provide credentials, use the least-privilege, short-lived tokens possible and avoid reusing highly privileged credentials. 3) Consider running the npm install in an isolated environment (container/VM) and inspect the package contents. 4) Create the credentials file at a dedicated path with restrictive permissions if using a file, and monitor network calls while first using the CLI. 5) If you cannot verify the package/source, do not install it; request that the skill metadata be updated to list required env vars and provide a homepage/source link for auditing.Like a lobster shell, security has layers — review code before you run it.
latestvk97eefb6n4g2rjp6zjsfvwh4h984cp76
License
MIT-0
Free to use, modify, and redistribute. No attribution required.