APIClaw Amazon API
PassAudited by ClawScan on May 1, 2026.
Overview
The provided artifacts describe a coherent instruction-only API reference skill that uses a declared APIClaw key to query APIClaw’s Amazon commerce-data API.
This appears appropriate for an API reference/integration skill. Before installing, make sure you trust APIClaw with the product or market queries you send, keep APICLAW_API_KEY secret, and monitor API usage if calls may consume paid credits.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
API calls may consume the user’s APIClaw quota or credits, and exposing the key could let someone else use the account.
The skill requires a bearer-style API credential; this is expected for APIClaw access, but the key authorizes requests under the user’s account.
metadata: {"openclaw": {"requires": {"env": ["APICLAW_API_KEY"]}, "primaryEnv": "APICLAW_API_KEY"}}Use a dedicated API key if possible, store it only as an environment variable, avoid pasting it into chats or logs, and revoke it if exposed.
Search terms, ASINs, categories, or product-research intent provided to the skill may be sent to APIClaw.
The skill is designed to send user-selected product, category, ASIN, and review-analysis requests to an external API provider.
Base URL: `https://api.apiclaw.io/openapi/v2` ... All endpoints: **POST** with JSON body
Only submit product or market research queries that you are comfortable sharing with APIClaw, and review the provider’s data handling terms if the queries are business-sensitive.