ClawHub
Back to skill
v0.1.1

Browser e-Commerce

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:15 AM.

Analysis

This instruction-only shopping workflow is coherent and bounded, though it may intentionally use your logged-in browser profile and local screenshots for private shopping pages.

GuidanceThis skill appears safe to install as an instruction-only e-commerce browser workflow. Be aware that, when a task requires it, it may use your logged-in browser session to view carts, orders, coupons, addresses, member prices, or delivery details. Do not approve payments, final order submission, or account changes unless you explicitly intend them, and delete any screenshots that contain private information.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
When the page is highly dynamic, check `requests`, `errors`, and `response body`.

The workflow permits browser automation to inspect network responses and page internals, which can reveal detailed commerce data. This is purpose-aligned for dynamic shopping pages and is not hidden.

User impactThe agent may inspect raw page or API response data to understand prices, coupons, delivery availability, or cart/order details.
RecommendationReview results from logged-in pages carefully and do not approve unintended clicks, account changes, order submission, or payment actions.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusNote
SKILL.md
`user`: use only when existing login state matters, such as carts, coupons, orders, addresses, or member prices.

The skill explicitly allows use of the user's logged-in browser profile for private commerce pages. This is sensitive account access, but it is disclosed and aligned with shopping/cart/order tasks.

User impactThe agent may view private shopping information such as carts, coupons, orders, addresses, and member prices when that is relevant to the task.
RecommendationUse this skill only for shopping tasks where logged-in commerce data is expected, and avoid invoking it for private account pages unless you intend the agent to inspect them.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
references/browser-commerce-schema.md
"evidence": { "screenshot": "/tmp/...png" }

The output schema includes screenshot evidence stored as a local file. If used on logged-in cart/order pages, screenshots may contain private shopping or account information.

User impactScreenshots or structured notes could retain sensitive shopping details locally after the task is complete.
RecommendationAvoid screenshots of private account pages unless needed, and delete local evidence files if they contain sensitive information.