Shopping Price Drop Coupon Scout
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a user provides an API key, that key could carry retailer or affiliate API access depending on its scope.
The skill may use optional API keys for official integrations, but it instructs explicit collection, avoids file storage, and excludes login credentials.
If API keys are required, collect explicitly and avoid storing them in files. Do not request login credentials.
Provide only limited, revocable API keys when necessary, and do not provide passwords, cookies, payment details, or account login credentials.
Untrusted or misconfigured webhook events could generate incorrect price alerts or expose a user's shopping interests to an integration.
Optional webhook/event handling is disclosed and limited to price-alert data, but webhook sources can influence alerts and may reveal watched products.
Optional: price update events. Deduplicate alerts and respect rate limits. Include product id, price, and timestamp.
Use trusted webhook sources only, verify event origin where possible, and avoid including more product detail than needed.