Amazon
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill is clearly meant for Amazon shopping, but it gives the agent authority to use your Amazon login and complete some purchases or returns without fresh confirmation.
Use this skill only if you are comfortable letting an agent control a logged-in Amazon browser. Prefer signing in manually, use a dedicated Chrome profile, close or clear the profile after use, and insist on explicit confirmation before every order placement or return submission.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could place a reorder or submit a return using default assumptions before you have reviewed the final item, price, address, payment method, refund details, or return answers.
The skill directs browser automation to submit checkout and return flows without a final user confirmation for some cases, even though those actions can charge a payment method or change Amazon account/order state.
Reorders ... **Place order without confirmation** — no screenshot needed ... Returns ... **Do NOT narrate each step** — just execute the whole return silently ... Confirm return
Require explicit user confirmation immediately before every 'Place order' or 'Confirm return' action, including a concise summary of item, price/refund, address, payment method, drop-off location, and return reason/condition answers.
A logged-in Amazon session can expose order history, addresses, saved payment options, returns, and purchasing authority.
The skill asks the agent to use Amazon account credentials and potentially access a password manager, which is high-impact identity access and is not clearly bounded by credential metadata or approval steps.
Logged into Amazon — if logged out, retrieve password from your password manager
Sign in manually instead of giving the agent password-manager access, use a dedicated limited browser profile, and require user approval before any action that changes the Amazon account or spends money.
If the browser profile or remote-debugging session remains available, later automation or local processes may be able to interact with the logged-in Amazon account.
The skill openly discloses a persistent Chrome profile for the Amazon session. This is purpose-aligned, but it means account access can remain available after the immediate task.
Browser profile persists login at `$HOME/.config/chrome-agent`
Use a dedicated profile only for this skill, close the browser after use, and periodically clear or remove the profile if you no longer want the session retained.
The actual safety of browser automation depends on the locally installed agent-browser tool and Chrome setup, which were not part of this review.
The skill depends on an external browser-control CLI, but the provided package is instruction-only and includes no install spec or reviewed code for that tool.
compatibility: Requires agent-browser CLI with Chrome DevTools Protocol (CDP)
Install browser automation tools only from trusted sources and review their permissions before using them with a logged-in shopping account.
Incorrect or outdated defaults could cause orders to use the wrong address or payment method, and the values may reveal personal information if stored broadly.
The skill stores reusable shipping and payment-method preferences as environment defaults. It does instruct verification, which helps, but these defaults are sensitive context that could be stale or over-trusted.
export AMAZON_SHIPPING_ADDRESS="Your shipping address" ... export AMAZON_PAYMENT_METHOD="Your preferred card" ... Always verify shipping address and payment method are correct before placing an order.
Keep these defaults minimal, avoid storing full card details, and verify address and payment method before every checkout.