Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Ad Spy Pipeline
v1.0.0Automates competitor ad scraping from ForePlay/Anstrex, AI adapts creatives, and syncs campaigns to Facebook Ads for e-commerce brands.
⭐ 0· 107·0 current·0 all-time
by@harvnk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The description and SKILL.md consistently describe a pipeline that scrapes ForePlay/Anstrex, sends creatives to Kie.ai, and creates Facebook ads — that purpose would legitimately require API keys/tokens for those services. However, the registry metadata lists no required environment variables or primary credential, and there is no homepage or source repository. The lack of declared credentials and provenance is inconsistent with the claimed capabilities.
Instruction Scope
SKILL.md instructs monitoring competitor brands, downloading source images/videos, deduplicating against "your existing library," sending creatives to Kie.ai for adaptation, and creating Facebook campaigns. Those runtime actions imply accessing local asset libraries and multiple external services and transmitting creative assets outside the user's environment (to Kie.ai). The instructions also reference running a concrete script (storm_pipeline_agent.py) but no such code file is provided — the runtime behavior is underspecified and grants broad discretion (e.g., where to read/write files, how to classify/deduplicate, how long to retain data), which is risky and incoherent with the registry.
Install Mechanism
There is no install spec and no code files (instruction-only), which is lower disk-risk in general — but SKILL.md describes executing a Python script (storm_pipeline_agent.py) and a cron schedule even though that script is not included and no install instructions are provided. That mismatch makes it unclear how the pipeline would be deployed and where the code would come from; missing provenance increases risk.
Credentials
The SKILL.md explicitly requires credentials (ForePlay API key OR Anstrex account, Kie.ai API key, Facebook Marketing API access token, Facebook Ad Account ID). Those are proportionate to the stated functionality, but the registry lists no required env vars or a primary credential. Requiring multiple potent account tokens is expected for the task, but failing to declare them in the metadata and providing no guidance about least-privilege or token scope is a red flag. In addition, uploading competitor creatives to an external AI provider raises copyright and data-exfiltration concerns that the docs do not address.
Persistence & Privilege
The skill does not request always:true and is user-invocable only. There is no indication it modifies other skills or system-wide settings. Autonomous invocation is allowed by default, which increases blast radius in general, but that is normal and not, by itself, an additional red flag here.
What to consider before installing
This skill's high-level description matches the actions in SKILL.md, but the package metadata and files do not. Before installing or using it: (1) Ask the publisher for source code or a trusted repository/homepage and a clear install procedure — do not run an absent script (storm_pipeline_agent.py). (2) Require the skill to declare exactly which environment variables it needs and prefer least-privilege tokens (short-lived or limited-scope tokens). (3) Confirm legal/ethical clearance for scraping competitors and for sending third-party creatives to Kie.ai (copyright/terms of service). (4) If you test it, run in a sandboxed environment or isolated account, and monitor network and API activity. (5) If the publisher cannot provide provenance or a repository with the code, treat this skill as untrusted and avoid supplying real account tokens.Like a lobster shell, security has layers — review code before you run it.
latestvk97fdqegjtgrr7cd0vq4aycgh1836haj
License
MIT-0
Free to use, modify, and redistribute. No attribution required.