v1.0.0

Competitive Intel

SuspiciousClawScan verdict for this skill. Analyzed Apr 30, 2026, 3:35 PM.

Analysis

This skill fits competitive research, but it under-discloses that it needs a Bright Data login, paid CLI activity, and an unpinned remote installer.

GuidanceInstall only if you trust the Bright Data CLI and are comfortable using a logged-in Bright Data account for potentially billable scraping. Confirm the research scope and expected cost before running bdata calls, and avoid including confidential strategy details in search or scrape queries.

Findings (9)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agent Goal Hijack

SeverityLowConfidenceHighStatusNote

SKILL.md

**Never answer competitive questions from training knowledge alone.** Always gather live data first using `bdata` commands

This explicitly forces the agent to prefer external tool use over answering from existing context. It is purpose-aligned for real-time intelligence, but it changes the normal response path.

User impactCompetitive research requests will trigger live data collection instead of a quick answer from existing knowledge.

RecommendationUse this skill when live data is wanted; for low-cost or offline answers, avoid invoking it.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusConcern

references/data-source-guide.md

Multi-competitor deep dive (3+) | 15-30 calls | ~$0.10-$0.50

The skill expects multiple billable bdata tool calls, and the provided capability signals include can-make-purchases. The artifacts give cost guidance but do not require user approval before cost-bearing calls.

User impactThe agent could spend Bright Data account credits or run many external scraping/search calls during a research task.

RecommendationRequire explicit user approval before running paid bdata calls, especially multi-competitor or parallel collection workflows.

Agentic Supply Chain Vulnerabilities

SeverityHighConfidenceHighStatusConcern

SKILL.md

curl -fsSL https://cli.brightdata.com/install.sh | bash

The skill instructs users to execute a remote installer script directly, while the package has no install spec or pinned dependency provenance.

User impactA user could run unreviewed remote installation code as part of setting up the skill.

RecommendationProvide a reviewed install specification with pinned versions/checksums or instruct users to install the CLI through a trusted package manager.

Unexpected Code Execution

SeverityHighConfidenceHighStatusConcern

SKILL.md

curl -fsSL https://cli.brightdata.com/install.sh | bash

This is an install-to-run flow that executes downloaded shell code, which is more powerful than an instruction-only skill's declared installation footprint.

User impactSetup can execute arbitrary shell commands delivered by the remote installer.

RecommendationAvoid curl-to-bash installation in the skill instructions, or add verification steps and explicit user consent before executing installer code.

Cascading Failures

SeverityLowConfidenceHighStatusNote

SKILL.md

**Parallelize** — Run independent `bdata` calls in parallel using multiple Bash tool calls in a single response

The skill encourages parallel external calls, so an incorrect target or overly broad request could be amplified into several scraping/search actions. The cost-efficiency guidance mitigates this but is not a hard control.

User impactA mistaken competitor name, URL, or broad request could trigger multiple unnecessary paid or external requests.

RecommendationConfirm scope before parallel collection and cap the number of bdata calls for each task.

Human-Agent Trust Exploitation

SeverityMediumConfidenceHighStatusConcern

SKILL.md

That's it. No env vars, no zone config, no API keys to manage.

This wording downplays setup and credential complexity even though the same prerequisite section requires bdata login and the workflow uses cost-bearing external calls.

User impactUsers may underestimate the account, billing, and installation implications of enabling the skill.

RecommendationClearly disclose the required Bright Data account login, possible costs, and installer trust requirements in the skill metadata and instructions.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

SKILL.md

One-time login completed: `bdata login`

The skill requires an authenticated Bright Data account session even though the registry metadata declares no primary credential or required environment variables.

User impactInstalling and using the skill may connect the agent to a user’s Bright Data account and billing context without that being captured in the declared credential contract.

RecommendationDeclare Bright Data account authentication as a required credential and document what account permissions and billing authority the skill needs.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceMediumStatusNote

SKILL.md

Always gather live data first using `bdata` commands, then analyze and synthesize.

The skill intentionally places external scraped web content into the agent's working context and uses it as evidence for analysis. This is purpose-aligned, but such content can be manipulated by website owners or reviewers.

User impactScraped pages or reviews could skew the analysis if they contain inaccurate or adversarial content.

RecommendationTreat scraped content as untrusted data, cross-check important claims across multiple sources, and avoid following instructions found inside scraped pages.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

SKILL.md

Real-time competitive intelligence powered by live web data. Combines Bright Data CLI (`bdata`) for data collection

The skill routes research queries, target URLs, and collection tasks through an external provider CLI. This is disclosed and purpose-aligned, but the data boundary depends on Bright Data.

User impactCompetitor names, target URLs, and possibly sensitive market-research intent may be sent to Bright Data infrastructure.

RecommendationDo not include confidential strategy details in bdata queries unless the Bright Data account and data-handling terms are acceptable.